PT-2015-4877 · Opensuse+1 · Osc+1

Ludwig Nussel

·

Publicado

2015-03-12

·

Atualizado

2024-06-15

·

CVE-2015-0778

CVSS v2.0

7.5

Alta

VetorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions osc versions prior to 0.151.0
Description The issue allows remote attackers to execute arbitrary commands via shell metacharacters in a service file.
Recommendations For versions prior to 0.151.0, update to version 0.151.0 or later to resolve the issue.

Correção

RCE

Command Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-77

Identificadores relacionados

CVE-2015-0778
OPENSUSE-SU-2015_0486-1
OPENSUSE-SU-2024:10133-1
SUSE-SU-2015:0487-1
SUSE-SU-2015:1361-1
SUSE-SU-2015_0487-1
SUSE-SU-2015_1361-1

Produtos afetados

Suse
Osc