exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2025-54314

около 1 месяца назад

Thor before 1.4.0 can construct an unsafe shell command from library input. NOTE: this is disputed by the Supplier because "the method that was fixed can only be used with arguments that are controlled by Thor, and there is no way an attacker can take control of those arguments."

CVSS3: 2.8

EPSS: Низкий

CVE-2025-54314

около 1 месяца назад

Thor before 1.4.0 can construct an unsafe shell command from library input. NOTE: this is disputed by the Supplier because "the method that was fixed can only be used with arguments that are controlled by Thor, and there is no way an attacker can take control of those arguments."

CVSS3: 2.8

EPSS: Низкий

CVE-2025-54314

около 1 месяца назад

Thor before 1.4.0 can construct an unsafe shell command from library input. NOTE: this is disputed by the Supplier because "the method that was fixed can only be used with arguments that are controlled by Thor, and there is no way an attacker can take control of those arguments."

CVSS3: 2.8

EPSS: Низкий

CVE-2025-54314

около 1 месяца назад

Thor before 1.4.0 can construct an unsafe shell command from library i ...

CVSS3: 2.8

EPSS: Низкий

GHSA-mqcp-p2hv-vw6x

около 1 месяца назад

Withdrawn Advisory: Thor can construct an unsafe shell command from library input.

CVSS3: 7.8

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2025-54314 Thor before 1.4.0 can construct an unsafe shell command from library input. NOTE: this is disputed by the Supplier because "the method that was fixed can only be used with arguments that are controlled by Thor, and there is no way an attacker can take control of those arguments."	CVSS3: 2.8	0% Низкий	около 1 месяца назад
CVE-2025-54314 Thor before 1.4.0 can construct an unsafe shell command from library input. NOTE: this is disputed by the Supplier because "the method that was fixed can only be used with arguments that are controlled by Thor, and there is no way an attacker can take control of those arguments."	CVSS3: 2.8	0% Низкий	около 1 месяца назад
CVE-2025-54314 Thor before 1.4.0 can construct an unsafe shell command from library input. NOTE: this is disputed by the Supplier because "the method that was fixed can only be used with arguments that are controlled by Thor, and there is no way an attacker can take control of those arguments."	CVSS3: 2.8	0% Низкий	около 1 месяца назад
CVE-2025-54314 Thor before 1.4.0 can construct an unsafe shell command from library i ...	CVSS3: 2.8	0% Низкий	около 1 месяца назад
GHSA-mqcp-p2hv-vw6x Withdrawn Advisory: Thor can construct an unsafe shell command from library input.	CVSS3: 7.8	0% Низкий	около 1 месяца назад

Уязвимостей на страницу