Опубликовано: 03 окт. 2016
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 9.3
CVSS3: 8.8
Описание
The extractTree function in unADF allows remote attackers to execute arbitrary code via shell metacharacters in a directory name in an adf file.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 0.7.11a-3+deb7u1 |
| esm-apps/xenial | released | 0.7.11a-3+deb7u1~build0.16.04.1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [0.7.11a-3+deb7u1~build0.14.04.1]] |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| trusty | released | 0.7.11a-3+deb7u1~build0.14.04.1 |
| trusty/esm | DNE | trusty was released [0.7.11a-3+deb7u1~build0.14.04.1] |
| upstream | released | 0.7.11a-3+deb7u1 |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE |
Показывать по
10
Ссылки на источники
EPSS
Процентиль: 93%
0.09936
Низкий
9.3 Critical
CVSS2
8.8 High
CVSS3
Связанные уязвимости
CVSS3: 8.8
nvd
больше 9 лет назад
The extractTree function in unADF allows remote attackers to execute arbitrary code via shell metacharacters in a directory name in an adf file.
CVSS3: 8.8
debian
больше 9 лет назад
The extractTree function in unADF allows remote attackers to execute a ...
CVSS3: 8.8
github
больше 3 лет назад
The extractTree function in unADF allows remote attackers to execute arbitrary code via shell metacharacters in a directory name in an adf file.
EPSS
Процентиль: 93%
0.09936
Низкий
9.3 Critical
CVSS2
8.8 High
CVSS3