Filtered by vendor Module Scandeps
Subscriptions
Filtered by product Needrestart
Subscriptions
Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2024-10224 | 1 Module Scandeps | 1 Needrestart | 2024-11-21 | 5.3 Medium |
Qualys discovered that if unsanitized input was used with the library Modules::ScanDeps, before version 1.36 a local attacker could possibly execute arbitrary shell commands by open()ing a "pesky pipe" (such as passing "commands|" as a filename) or by passing arbitrary strings to eval(). |
Page 1 of 1.