Lucene search
+L

9 matches found

CBLMariner
CBLMariner
added 2025/08/06 3:8 p.m.10 views

CVE-2024-58266 affecting package rust for versions less than 1.86.0-3

CVE-2024-58266 affecting package rust for versions less than 1.86.0-3. A patched version of the package is available...

9.8CVSS6.4AI score0.0078EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/07/28 7:50 a.m.6 views

CVE-2024-58266

A flaw was found in shlex. The shlex crate improperly handles unquoted and unescaped curly brace and non-breaking space characters, allowing a local attacker to inject arbitrary commands. This injection occurs when processing input that contains these characters without proper quoting or escaping...

9.8CVSS6.6AI score0.0078EPSS
Exploits0References6
OSV
OSV
added 2025/07/27 10:15 p.m.9 views

AZL-66017 CVE-2024-58266 affecting package rust 1.72.0-14

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

9.8CVSS5.8AI score0.0078EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/07/27 10:15 p.m.5 views

CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

9.8CVSS5.8AI score0.0078EPSS
Exploits0References4
CVE
CVE
added 2025/07/27 12:0 a.m.47 views

CVE-2024-58266

The CVE-2024-58266 entry concerns the shlex crate for Rust, affected in versions before 1.2.1. The root cause is that unquoted and unescaped instances of the characters { and �a0 may be processed in command arguments, potentially enabling command injection. Impact is described as high in network-...

9.8CVSS7.2AI score0.0078EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2025/07/27 12:0 a.m.6 views

CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

9.8CVSS5.2AI score0.0078EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/07/27 12:0 a.m.6 views

CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

3.2CVSS6.8AI score0.0078EPSS
Exploits0References3
OSV
OSV
added 2025/07/27 12:0 a.m.9 views

CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

3.2CVSS6.7AI score0.0078EPSS
Exploits0References5
vulnersOsv
vulnersOsv
added 2024/01/21 12:0 p.m.11 views

RustProject (=0.1.0), SOEM-sys (=0.2.0) +2132 more potentially affected by CVE-2024-58266 via shlex (>=0.1.1 <=1.1.0)

shlex CARGO version =0.1.1, =0.1.0, =0.1.0, =0.0.9, =0.0.13 - aigcapi =5.1.2 - aigcchain =5.1.2 - aigcconfig =5.1.2 and more Source cves: CVE-2024-58266 Source advisory: OSV:RUSTSEC-2024-0006...

9.8CVSS5.7AI score0.0078EPSS
Exploits0
Rows per page
Query Builder