Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2012-5534

Опубликовано: 03 дек. 2012
Источник: nvd
CVSS2: 7.5
EPSS Низкий

Описание

The hook_process function in the plugin API for WeeChat 0.3.0 through 0.3.9.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a command from a plugin, related to "shell expansion."

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:flashtux:weechat:0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:flashtux:weechat:0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:flashtux:weechat:0.3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:flashtux:weechat:0.3.2:*:*:*:*:*:*:*
cpe:2.3:a:flashtux:weechat:0.3.3:*:*:*:*:*:*:*
cpe:2.3:a:flashtux:weechat:0.3.4:*:*:*:*:*:*:*
cpe:2.3:a:flashtux:weechat:0.3.6:*:*:*:*:*:*:*
cpe:2.3:a:flashtux:weechat:0.3.7:*:*:*:*:*:*:*
cpe:2.3:a:flashtux:weechat:0.3.8:*:*:*:*:*:*:*
cpe:2.3:a:flashtux:weechat:0.3.9:*:*:*:*:*:*:*
cpe:2.3:a:flashtux:weechat:0.3.9.1:*:*:*:*:*:*:*

EPSS

Процентиль: 83%
0.01972
Низкий

7.5 High

CVSS2

Дефекты

CWE-20

Связанные уязвимости

ubuntu логотип

CVE-2012-5534

ubuntu
около 13 лет назад

The hook_process function in the plugin API for WeeChat 0.3.0 through 0.3.9.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a command from a plugin, related to "shell expansion."

debian логотип

CVE-2012-5534

debian
около 13 лет назад

The hook_process function in the plugin API for WeeChat 0.3.0 through ...

github логотип

GHSA-q88q-j4pq-r9xg

github
больше 3 лет назад

The hook_process function in the plugin API for WeeChat 0.3.0 through 0.3.9.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a command from a plugin, related to "shell expansion."

EPSS

Процентиль: 83%
0.01972
Низкий

7.5 High

CVSS2

Дефекты

CWE-20