Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2014-0156

Опубликовано: 27 мар. 2014
Источник: redhat
CVSS3: 8.1

Описание

Awesome spawn contains OS command injection vulnerability, which allows execution of additional commands passed to Awesome spawn as arguments. If untrusted input was included in command arguments, attacker could use this flaw to execute arbitrary command.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
CloudForms Management Engine 5cfme-gemsetNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-78
https://bugzilla.redhat.com/show_bug.cgi?id=2102827awesome_spawn: OS command injection vulnerability

8.1 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2014-0156

CVSS3: 9.8
nvd
больше 3 лет назад

Awesome spawn contains OS command injection vulnerability, which allows execution of additional commands passed to Awesome spawn as arguments. If untrusted input was included in command arguments, attacker could use this flaw to execute arbitrary command.

github логотип

GHSA-qpqw-mc85-qvm9

CVSS3: 9.8
github
больше 3 лет назад

OS Command Injection in awesome spawn

8.1 High

CVSS3