Описание
freeciv 2.2 before 2.2.1 and 2.3 before 2.3.0 allows attackers to read arbitrary files or execute arbitrary commands via a scenario that contains Lua functionality, related to the (1) os, (2) io, (3) package, (4) dofile, (5) loadfile, (6) loadlib, (7) module, and (8) require modules or functions.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 2.4.2-1 |
| cosmic | not-affected | 2.4.2-1 |
| dapper | ignored | end of life |
| devel | not-affected | 2.4.2-1 |
| esm-apps/bionic | not-affected | 2.4.2-1 |
| esm-apps/xenial | not-affected | 2.4.2-1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [2.4.2-1]] |
| hardy | ignored | end of life |
| jaunty | ignored | end of life |
Показывать по
Ссылки на источники
10 Critical
CVSS2
Связанные уязвимости
freeciv 2.2 before 2.2.1 and 2.3 before 2.3.0 allows attackers to read arbitrary files or execute arbitrary commands via a scenario that contains Lua functionality, related to the (1) os, (2) io, (3) package, (4) dofile, (5) loadfile, (6) loadlib, (7) module, and (8) require modules or functions.
freeciv 2.2 before 2.2.1 and 2.3 before 2.3.0 allows attackers to read ...
freeciv 2.2 before 2.2.1 and 2.3 before 2.3.0 allows attackers to read arbitrary files or execute arbitrary commands via a scenario that contains Lua functionality, related to the (1) os, (2) io, (3) package, (4) dofile, (5) loadfile, (6) loadlib, (7) module, and (8) require modules or functions.
10 Critical
CVSS2