Описание
An incorrect handling of a special element in Busybox's ash applet leads to denial of service when processing a crafted shell command, due to the shell mistaking specific characters for reserved characters. This may be used for DoS under rare conditions of filtered command input.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 1:1.27.2-2ubuntu3.3 |
| devel | not-affected | 1:1.30.1-6ubuntu3 |
| esm-infra-legacy/trusty | not-affected | |
| esm-infra/bionic | not-affected | 1:1.27.2-2ubuntu3.3 |
| esm-infra/focal | not-affected | 1:1.30.1-4ubuntu6.3 |
| esm-infra/xenial | not-affected | |
| focal | not-affected | 1:1.30.1-4ubuntu6.3 |
| hirsute | not-affected | 1:1.30.1-6ubuntu2 |
| impish | not-affected | 1:1.30.1-6ubuntu3 |
| jammy | not-affected | 1:1.30.1-6ubuntu3 |
Показывать по
EPSS
1.9 Low
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
An incorrect handling of a special element in Busybox's ash applet leads to denial of service when processing a crafted shell command, due to the shell mistaking specific characters for reserved characters. This may be used for DoS under rare conditions of filtered command input.
An incorrect handling of a special element in Busybox's ash applet leads to denial of service when processing a crafted shell command, due to the shell mistaking specific characters for reserved characters. This may be used for DoS under rare conditions of filtered command input.
An incorrect handling of a special element in Busybox's ash applet lea ...
An incorrect handling of a special element in Busybox's ash applet leads to denial of service when processing a crafted shell command, due to the shell mistaking specific characters for reserved characters. This may be used for DoS under rare conditions of filtered command input.
Уязвимость набора утилит командной строки BusyBox, связанная с неправильной проверкой входных данных, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
1.9 Low
CVSS2
5.5 Medium
CVSS3