Описание
Eval injection vulnerability in Horde Application Framework versions 3.0 before 3.0.10 and 3.1 before 3.1.1 allows remote attackers to execute arbitrary code via the help viewer.
Ссылки
- Patch
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Patch
- Patch
- Vendor Advisory
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:horde:application_framework:3.0:*:*:*:*:*:*:*
cpe:2.3:a:horde:application_framework:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:horde:application_framework:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:horde:application_framework:3.0.3:*:*:*:*:*:*:*
cpe:2.3:a:horde:application_framework:3.0.4:*:*:*:*:*:*:*
cpe:2.3:a:horde:application_framework:3.0.4_rc1:*:*:*:*:*:*:*
cpe:2.3:a:horde:application_framework:3.0.4_rc2:*:*:*:*:*:*:*
cpe:2.3:a:horde:application_framework:3.0.6:*:*:*:*:*:*:*
cpe:2.3:a:horde:application_framework:3.0.7:*:*:*:*:*:*:*
cpe:2.3:a:horde:application_framework:3.0.8:*:*:*:*:*:*:*
cpe:2.3:a:horde:application_framework:3.0.9:*:*:*:*:*:*:*
cpe:2.3:a:horde:application_framework:3.1:*:*:*:*:*:*:*
EPSS
Процентиль: 95%
0.18309
Средний
7.5 High
CVSS2
Дефекты
CWE-94
Связанные уязвимости
ubuntu
больше 19 лет назад
Eval injection vulnerability in Horde Application Framework versions 3.0 before 3.0.10 and 3.1 before 3.1.1 allows remote attackers to execute arbitrary code via the help viewer.
debian
больше 19 лет назад
Eval injection vulnerability in Horde Application Framework versions 3 ...
github
больше 3 лет назад
Eval injection vulnerability in Horde Application Framework versions 3.0 before 3.0.10 and 3.1 before 3.1.1 allows remote attackers to execute arbitrary code via the help viewer.
EPSS
Процентиль: 95%
0.18309
Средний
7.5 High
CVSS2
Дефекты
CWE-94