Lucene search
CVE-2018-10992
🗓️ 11 May 2018 22:00:29Reported by Debian Security Bug TrackerType 
debiancve🔗 security-tracker.debian.org👁 8 Views
lilypond-invoke-editor in LilyPond 2.19.80 does not validate strings before launching the program specified by the BROWSER environment variable, allows remote argument-injection attacks via a crafted UR
Show more
| Reporter | Title | Published | Views | Family All 20 |
|---|---|---|---|---|
 | CVE-2018-10992 | 11 May 201822:29 | – | cve |
| CVE-2017-17523 | 11 Dec 201706:29 | – | cve |
 | CVE-2018-10992 | 11 May 201822:29 | – | nvd |
| CVE-2017-17523 | 11 Dec 201706:29 | – | nvd |
 | CVE-2018-10992 | 11 May 201822:29 | – | osv |
| CVE-2017-17523 | 11 Dec 201706:29 | – | osv |
| lilypond-2.23.3-1.3 on GA media | 15 Jun 202400:00 | – | osv |
 | Design/Logic Flaw | 11 May 201822:29 | – | prion |
| Design/Logic Flaw | 11 Dec 201706:29 | – | prion |
 | CVE-2018-10992 | 14 May 201912:24 | – | redhatcve |
10
| OS | OS Version | Architecture | Package | Package Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | lilypond | 2.18.2-13 | lilypond_2.18.2-13_all.deb |
| Debian | 11 | all | lilypond | 2.18.2-13 | lilypond_2.18.2-13_all.deb |
| Debian | 999 | all | lilypond | 2.18.2-13 | lilypond_2.18.2-13_all.deb |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo11 May 2018 22:29Current
8.6High risk
Vulners AI Score8.6
CVSS27.5
CVSS39.8
EPSS0.004