Lucene search
Alpine Linux Development TeamALPINE:CVE-2017-12904HistoryAug 23, 2017 - 2:29 p.m.
CVE-2017-12904
2017-08-2314:29:00
Alpine Linux Development Team
security.alpinelinux.org
10
0.023 Low
EPSS
Percentile
89.7%
Improper Neutralization of Special Elements used in an OS Command in bookmarking function of Newsbeuter versions 0.7 through 2.9 allows remote attackers to perform user-assisted code execution by crafting an RSS item that includes shell code in its title and/or URL.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | 3.3-main | noarch | newsbeuter | <Â 2.9-r4 | UNKNOWN |
| Alpine | 3.4-main | noarch | newsbeuter | <Â 2.9-r4 | UNKNOWN |
| Alpine | 3.5-main | noarch | newsbeuter | <Â 2.9-r4 | UNKNOWN |
| Alpine | 3.6-main | noarch | newsbeuter | <Â 2.9-r4 | UNKNOWN |
| Alpine | 3.7-main | noarch | newsbeuter | <Â 2.9-r4 | UNKNOWN |
Related
nessus
nessus
Debian DLA-1061-1 : newsbeuter security update
2017-08-21 00:00:00
GLSA-201801-18 : Newsbeuter: User-assisted execution of arbitrary code
2018-01-18 00:00:00
Debian DSA-3947-1 : newsbeuter - security update
2017-08-21 00:00:00
osv
osv
newsbeuter - security update
2017-08-18 00:00:00
newsbeuter - security update
2017-08-19 00:00:00
CVE-2017-12904
2017-08-23 14:29:00
debian
debian
[SECURITY] [DSA 3947-1] newsbeuter security update
2017-08-18 14:42:11
[SECURITY] [DLA 1061-1] newsbeuter security update
2017-08-19 17:40:41
[SECURITY] [DSA 3947-1] newsbeuter security update
2017-08-18 14:41:52
openvas
openvas
openSUSE: Security Advisory for newsbeuter (openSUSE-SU-2018:0166-1)
2018-01-21 00:00:00
Debian: Security Advisory (DLA-1061-1)
2018-02-06 00:00:00
Debian: Security Advisory (DSA-3947-1)
2017-08-17 00:00:00
gentoo
gentoo
Newsbeuter: User-assisted execution of arbitrary code
2018-01-17 00:00:00
ubuntucve
ubuntucve
CVE-2017-12904
2017-08-23 00:00:00
CVE-2017-14500
2017-09-17 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-05-10 23:24:57
OS Command Injection
2020-05-10 23:27:42
suse
suse
Security update for newsbeuter (important)
2018-01-20 18:19:18
cvelist
cvelist
CVE-2017-12904
2017-08-23 14:00:00
CVE-2017-14500
2017-09-17 05:00:00
prion
prion
Command injection
2017-08-23 14:29:00
Command injection
2017-09-17 05:29:00
cve
cve
CVE-2017-12904
2017-08-23 14:29:00
CVE-2017-14500
2017-09-17 05:29:00
archlinux
archlinux
[ASA-201708-15] newsbeuter: arbitrary code execution
2017-08-20 00:00:00
[ASA-201709-11] newsbeuter: arbitrary command execution
2017-09-16 00:00:00
debiancve
debiancve
CVE-2017-12904
2017-08-23 14:29:00
CVE-2017-14500
2017-09-17 05:29:00
alpinelinux
alpinelinux
CVE-2017-14500
2017-09-17 05:29:00
ubuntu
ubuntu
Newsbeuter vulnerabilities
2020-10-15 00:00:00