Описание
xdg-desktop-portal-hyprland (aka an XDG Desktop Portal backend for Hyprland) before 1.3.3 allows OS command execution, e.g., because single quotes are not used when sending a list of app IDs and titles via the environment.
Ссылки
EPSS
Процентиль: 32%
0.00124
Низкий
6.3 Medium
CVSS3
Дефекты
CWE-78
Связанные уязвимости
CVSS3: 6.3
github
больше 1 года назад
xdg-desktop-portal-hyprland (aka an XDG Desktop Portal backend for Hyprland) before 1.3.3 allows OS command execution, e.g., because single quotes are not used when sending a list of app IDs and titles via the environment.
EPSS
Процентиль: 32%
0.00124
Низкий
6.3 Medium
CVSS3
Дефекты
CWE-78