Опубликовано: 06 мая 2016
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 10
CVSS3: 9.8
Описание
Cool Projects TarDiff allows remote attackers to execute arbitrary commands via shell metacharacters in the name of a (1) tar file or (2) file within a tar file.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 0.1-5 |
| bionic | not-affected | 0.1-5 |
| cosmic | not-affected | 0.1-5 |
| devel | not-affected | 0.1-5 |
| esm-apps/bionic | not-affected | 0.1-5 |
| esm-apps/xenial | released | 0.1-5~build0.16.04.1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [0.1-2+deb8u2build0.14.04.1]] |
| precise | DNE | |
| precise/esm | DNE | |
| trusty | released | 0.1-2+deb8u2build0.14.04.1 |
Показывать по
10
Ссылки на источники
EPSS
Процентиль: 86%
0.03116
Низкий
10 Critical
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
CVSS3: 9.8
nvd
почти 10 лет назад
Cool Projects TarDiff allows remote attackers to execute arbitrary commands via shell metacharacters in the name of a (1) tar file or (2) file within a tar file.
CVSS3: 9.8
debian
почти 10 лет назад
Cool Projects TarDiff allows remote attackers to execute arbitrary com ...
CVSS3: 9.8
github
больше 3 лет назад
Cool Projects TarDiff allows remote attackers to execute arbitrary commands via shell metacharacters in the name of a (1) tar file or (2) file within a tar file.
EPSS
Процентиль: 86%
0.03116
Низкий
10 Critical
CVSS2
9.8 Critical
CVSS3