Описание
In Tcl 8.6.11, a format string vulnerability in nmakehlp.c might allow code execution via a crafted file. NOTE: multiple third parties dispute the significance of this finding
Ссылки
- ExploitPatchVendor Advisory
- ExploitVendor Advisory
- PatchThird Party Advisory
- ExploitThird Party Advisory
- ExploitPatchVendor Advisory
- ExploitVendor Advisory
- PatchThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:tcl:tcl:8.6.11:*:*:*:*:*:*:*
EPSS
Процентиль: 52%
0.0029
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-134
Связанные уязвимости
CVSS3: 7.8
ubuntu
больше 4 лет назад
In Tcl 8.6.11, a format string vulnerability in nmakehlp.c might allow code execution via a crafted file. NOTE: multiple third parties dispute the significance of this finding
CVSS3: 7.8
debian
больше 4 лет назад
In Tcl 8.6.11, a format string vulnerability in nmakehlp.c might allow ...
CVSS3: 7.8
github
больше 3 лет назад
** DISPUTED ** In Tcl 8.6.11, a format string vulnerability in nmakehlp.c might allow code execution via a crated file. NOTE: multiple third parties dispute the significance of this finding.
EPSS
Процентиль: 52%
0.0029
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-134