Описание
The rxvt-unicode package is vulnerable to a remote code execution, in the Perl background extension, when an attacker can control the data written to the user's terminal and certain options are set.
Ссылки
- Issue TrackingThird Party Advisory
- Third Party Advisory
- Mailing ListThird Party Advisory
- Issue TrackingThird Party Advisory
- Third Party Advisory
- Mailing ListThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:rxvt-unicode_project:rxvt-unicode:9.25:*:*:*:*:*:*:*
cpe:2.3:a:rxvt-unicode_project:rxvt-unicode:9.26:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:a:fedoraproject:extra_packages_for_enterprise_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*
EPSS
Процентиль: 86%
0.02979
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-74
NVD-CWE-Other
Связанные уязвимости
CVSS3: 9.8
ubuntu
около 3 лет назад
The rxvt-unicode package is vulnerable to a remote code execution, in the Perl background extension, when an attacker can control the data written to the user's terminal and certain options are set.
CVSS3: 9.8
debian
около 3 лет назад
The rxvt-unicode package is vulnerable to a remote code execution, in ...
CVSS3: 9.8
github
около 3 лет назад
The rxvt-unicode package is vulnerable to a remote code execution, in the Perl background extension, when an attacker can control the data written to the user's terminal and certain options are set.
EPSS
Процентиль: 86%
0.02979
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-74
NVD-CWE-Other