Lucene search
GoogleOSV:GHSA-5JRP-W8FR-MRWWHistoryMay 13, 2022 - 1:07 a.m.
Fluentd Escape Sequence Injection Vulnerability
2022-05-1301:07:35
Google
osv.dev
6
0.002 Low
EPSS
Percentile
60.4%
Escape sequence injection vulnerability in Fluentd versions 0.12.29 through 0.12.40 may allow an attacker to change the terminal UI or execute arbitrary commands on the device via unspecified vectors.
References
access.redhat.com/errata/RHSA-2018:2225
github.com/fluent/fluentd
github.com/fluent/fluentd/blob/v0.12/CHANGELOG.md#bug-fixes
github.com/fluent/fluentd/pull/1733
github.com/rubysec/ruby-advisory-db/blob/master/gems/fluentd/CVE-2017-10906.yml
jvn.jp/en/vu/JVNVU95124098/index.html
nvd.nist.gov/vuln/detail/CVE-2017-10906
Related
nessus
nessus
RHEL 8 : fluentd (Unpatched Vulnerability)
2024-05-11 00:00:00
redhatcve
redhatcve
CVE-2017-10906
2017-12-12 04:19:40
nvd
nvd
CVE-2017-10906
2017-12-08 15:29:00
cve
cve
CVE-2017-10906
2017-12-08 15:29:00
veracode
veracode
Escape Sequence Injection
2017-12-10 22:32:27
Escape Sequence Injection
2019-01-15 09:24:54
redhat
redhat
(RHSA-2018:2225) Moderate: fluentd security update
2018-07-19 13:40:23
prion
prion
Design/Logic Flaw
2017-12-08 15:29:00
osv
osv
CVE-2017-10906
2017-12-08 15:29:00
cvelist
cvelist
CVE-2017-10906
2017-12-08 15:00:00
github
github
Fluentd Escape Sequence Injection Vulnerability
2022-05-13 01:07:35