Lucene search

[email protected]CVE-2009-4015

HistoryOct 03, 2022 - 4:24 p.m.

CVE-2009-4015

2022-10-0316:24:02

CWE-89

[email protected]

web.nvd.nist.gov

cve-2009-4015

remote code execution

lintian

shell metacharacters

security vulnerability

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.6 High

AI Score

Confidence

High

0.016 Low

EPSS

Percentile

87.6%

JSON

Lintian 1.23.x through 1.23.28, 1.24.x through 1.24.2.1, and 2.x before 2.3.2 allows remote attackers to execute arbitrary commands via shell metacharacters in filename arguments.

Affected configurations

NVD

Node

debianlintianMatch1.23.0

debianlintianMatch1.23.1

debianlintianMatch1.23.2

debianlintianMatch1.23.3

debianlintianMatch1.23.4

debianlintianMatch1.23.5

debianlintianMatch1.23.6

debianlintianMatch1.23.7

debianlintianMatch1.23.8

debianlintianMatch1.23.9

debianlintianMatch1.23.10

debianlintianMatch1.23.11

debianlintianMatch1.23.12

debianlintianMatch1.23.13

debianlintianMatch1.23.14

debianlintianMatch1.23.15

debianlintianMatch1.23.16

debianlintianMatch1.23.17

debianlintianMatch1.23.18

debianlintianMatch1.23.19

debianlintianMatch1.23.20

debianlintianMatch1.23.22

debianlintianMatch1.23.23

debianlintianMatch1.23.24

debianlintianMatch1.23.25

debianlintianMatch1.23.26

debianlintianMatch1.23.27

debianlintianMatch1.23.28

debianlintianMatch1.24.0

debianlintianMatch1.24.1

debianlintianMatch1.24.2

debianlintianMatch2.0-rc1

debianlintianMatch2.0-rc2

debianlintianMatch2.1.0

debianlintianMatch2.1.1

debianlintianMatch2.1.2

debianlintianMatch2.1.3

debianlintianMatch2.1.4

debianlintianMatch2.1.5

debianlintianMatch2.1.6

debianlintianMatch2.2.0

debianlintianMatch2.2.1

debianlintianMatch2.2.2

debianlintianMatch2.2.3

debianlintianMatch2.2.4

debianlintianMatch2.2.5

debianlintianMatch2.2.6

debianlintianMatch2.2.7

debianlintianMatch2.2.8

debianlintianMatch2.2.9

debianlintianMatch2.2.10

debianlintianMatch2.2.11

debianlintianMatch2.2.12

debianlintianMatch2.2.13

debianlintianMatch2.2.14

debianlintianMatch2.2.15

debianlintianMatch2.2.16

debianlintianMatch2.2.18

debianlintianMatch2.3.0

debianlintianMatch2.3.1

CPENameOperatorVersion
debian:lintiandebian lintianeq1.23.0
debian:lintiandebian lintianeq1.23.1
debian:lintiandebian lintianeq1.23.2
debian:lintiandebian lintianeq1.23.3
debian:lintiandebian lintianeq1.23.4
debian:lintiandebian lintianeq1.23.5
debian:lintiandebian lintianeq1.23.6
debian:lintiandebian lintianeq1.23.7
debian:lintiandebian lintianeq1.23.8
debian:lintiandebian lintianeq1.23.9

CPE	Name	Operator	Version
debian:lintian	debian lintian	eq	1.23.0
debian:lintian	debian lintian	eq	1.23.1
debian:lintian	debian lintian	eq	1.23.2
debian:lintian	debian lintian	eq	1.23.3
debian:lintian	debian lintian	eq	1.23.4
debian:lintian	debian lintian	eq	1.23.5
debian:lintian	debian lintian	eq	1.23.6
debian:lintian	debian lintian	eq	1.23.7
debian:lintian	debian lintian	eq	1.23.8
debian:lintian	debian lintian	eq	1.23.9