Описание
CSV Injection vulnerability in GNOME time tracker version 3.0.2, allows local attackers to execute arbitrary code via crafted .tsv file when creating a new record.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:gnome:gnome-time_tracker:3.0.2:*:*:*:*:*:*:*
EPSS
Процентиль: 87%
0.03602
Низкий
7.8 High
CVSS3
Дефекты
CWE-74
CWE-74
Связанные уязвимости
CVSS3: 7.8
ubuntu
больше 2 лет назад
CSV Injection vulnerability in GNOME time tracker version 3.0.2, allows local attackers to execute arbitrary code via crafted .tsv file when creating a new record.
CVSS3: 7.8
debian
больше 2 лет назад
CSV Injection vulnerability in GNOME time tracker version 3.0.2, allow ...
CVSS3: 7.8
github
больше 2 лет назад
CSV Injection vulnerability in GNOME time tracker version 3.0.2, allows local attackers to execute arbitrary code via crafted .tsv file when creating a new record.
EPSS
Процентиль: 87%
0.03602
Низкий
7.8 High
CVSS3
Дефекты
CWE-74
CWE-74