Описание
Btrbk before 0.31.2 allows command execution because of the mishandling of remote hosts filtering SSH commands using ssh_filter_btrbk.sh in authorized_keys.
Ссылки
- Release NotesThird Party Advisory
- PatchThird Party Advisory
- Mailing ListThird Party Advisory
- Release NotesThird Party Advisory
- PatchThird Party Advisory
- Mailing ListThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 0.31.2 (исключая)
cpe:2.3:a:digint:btrbk:*:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Конфигурация 3
Одно из
cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
EPSS
Процентиль: 42%
0.00199
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-77
Связанные уязвимости
CVSS3: 9.8
ubuntu
больше 4 лет назад
Btrbk before 0.31.2 allows command execution because of the mishandling of remote hosts filtering SSH commands using ssh_filter_btrbk.sh in authorized_keys.
CVSS3: 9.8
debian
больше 4 лет назад
Btrbk before 0.31.2 allows command execution because of the mishandlin ...
CVSS3: 9.8
github
больше 3 лет назад
Btrbk before 0.31.2 allows command execution because of the mishandling of remote hosts filtering SSH commands using ssh_filter_btrbk.sh in authorized_keys.
EPSS
Процентиль: 42%
0.00199
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-77