Описание
dhcpcd before 5.2.12 allows remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP message.
Ссылки
- Patch
- Vendor Advisory
- Patch
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 5.2.10 (включая)
cpe:2.3:a:roy_marples:dhcpcd:*:*:*:*:*:*:*:*
EPSS
Процентиль: 74%
0.00826
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
ubuntu
больше 14 лет назад
dhcpcd before 5.2.12 allows remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP message.
debian
больше 14 лет назад
dhcpcd before 5.2.12 allows remote attackers to execute arbitrary comm ...
github
больше 3 лет назад
dhcpcd before 5.2.12 allows remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP message.
EPSS
Процентиль: 74%
0.00826
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-20