rkhunter versions before 1.4.4 are vulnerable to file download over insecure channel when doing mirror update resulting into potential remote code execution.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2017-07-21T22:00:00Z

Updated: 2024-09-16T20:16:18.492Z

Reserved: 2017-04-05T00:00:00

Link: CVE-2017-7480

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2017-07-21T22:29:00.253

Modified: 2020-09-09T15:11:34.683

Link: CVE-2017-7480

cve-icon Redhat

No data.