CVE-2017-18205

Опубликовано: 27 фев. 2018

Источник: nvd

CVSS3: 8.1

CVSS2: 6.8

EPSS Низкий

Описание

In builtin.c in zsh before 5.4, when sh compatibility mode is used, there is a NULL pointer dereference during processing of the cd command with no argument if HOME is not set.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:zsh_project:zsh:*:*:*:*:*:*:*:*

Версия до 5.4 (исключая)

EPSS

Процентиль: 48%

0.00249

Низкий

8.1 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-476

Связанные уязвимости

CVE-2017-18205

CVSS3: 8.1

ubuntu

больше 7 лет назад

In builtin.c in zsh before 5.4, when sh compatibility mode is used, there is a NULL pointer dereference during processing of the cd command with no argument if HOME is not set.

CVE-2017-18205

CVSS3: 2

redhat

больше 8 лет назад

In builtin.c in zsh before 5.4, when sh compatibility mode is used, there is a NULL pointer dereference during processing of the cd command with no argument if HOME is not set.

CVE-2017-18205

CVSS3: 8.1

debian

больше 7 лет назад

In builtin.c in zsh before 5.4, when sh compatibility mode is used, th ...

GHSA-r2ph-r5g8-q5vv

CVSS3: 8.1

github

больше 3 лет назад

In builtin.c in zsh before 5.4, when sh compatibility mode is used, there is a NULL pointer dereference during processing of the cd command with no argument if HOME is not set.

ELSA-2018-3073

oracle-oval

около 7 лет назад

ELSA-2018-3073: zsh security and bug fix update (MODERATE)

EPSS

Процентиль: 48%

0.00249

Низкий

8.1 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-476