Описание
Minetest before 5.4.0 allows attackers to add or modify arbitrary meta fields of the same item stack as saved user input, aka ItemStack meta injection.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| devel | DNE | |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | needs-triage | |
| esm-apps/jammy | not-affected | 5.4.1+repack-2build1 |
| esm-apps/noble | not-affected | 5.4.1+repack-2build1 |
| esm-apps/xenial | needs-triage | |
| focal | ignored | end of standard support, was needs-triage |
| impish | ignored | end of life |
| jammy | not-affected | 5.4.1+repack-2build1 |
Показывать по
10
Ссылки на источники
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
CVSS3: 9.8
nvd
около 4 лет назад
Minetest before 5.4.0 allows attackers to add or modify arbitrary meta fields of the same item stack as saved user input, aka ItemStack meta injection.
CVSS3: 9.8
debian
около 4 лет назад
Minetest before 5.4.0 allows attackers to add or modify arbitrary meta ...
CVSS3: 9.8
github
почти 4 года назад
Minetest before 5.4.0 allows attackers to add or modify arbitrary meta fields of the same item stack as saved user input, aka ItemStack meta injection.
7.5 High
CVSS2
9.8 Critical
CVSS3