Lucene search
K

9 matches found

CBLMariner
CBLMariner
added 2025/08/06 3:8 p.m.9 views

CVE-2024-58266 affecting package rust for versions less than 1.86.0-3

CVE-2024-58266 affecting package rust for versions less than 1.86.0-3. A patched version of the package is available...

9.8CVSS6.4AI score0.0078EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/07/28 7:50 a.m.5 views

CVE-2024-58266

A flaw was found in shlex. The shlex crate improperly handles unquoted and unescaped curly brace and non-breaking space characters, allowing a local attacker to inject arbitrary commands. This injection occurs when processing input that contains these characters without proper quoting or escaping...

9.8CVSS6.6AI score0.0078EPSS
Exploits0References6
OSV
OSV
added 2025/07/27 10:15 p.m.9 views

AZL-66017 CVE-2024-58266 affecting package rust 1.72.0-14

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

9.8CVSS5.8AI score0.0078EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/07/27 10:15 p.m.5 views

CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

9.8CVSS5.8AI score0.0078EPSS
Exploits0References4
CVE
CVE
added 2025/07/27 12:0 a.m.47 views

CVE-2024-58266

The CVE-2024-58266 entry concerns the shlex crate for Rust, affected in versions before 1.2.1. The root cause is that unquoted and unescaped instances of the characters { and �a0 may be processed in command arguments, potentially enabling command injection. Impact is described as high in network-...

9.8CVSS7.2AI score0.0078EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/27 12:0 a.m.6 views

CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

3.2CVSS6.8AI score0.0078EPSS
Exploits0References3
OSV
OSV
added 2025/07/27 12:0 a.m.6 views

CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

3.2CVSS6.7AI score0.0078EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/07/27 12:0 a.m.5 views

CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

9.8CVSS5.2AI score0.0078EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2024/01/21 12:0 p.m.11 views

RustProject (=0.1.0), SOEM-sys (=0.2.0) +2132 more potentially affected by CVE-2024-58266 via shlex (>=0.1.1 <=1.1.0)

shlex CARGO version =0.1.1, =0.1.0, =0.1.0, =0.0.9, =0.0.13 - aigcapi =5.1.2 - aigcchain =5.1.2 - aigcconfig =5.1.2 and more Source cves: CVE-2024-58266 Source advisory: OSV:RUSTSEC-2024-0006...

9.8CVSS5.7AI score0.0078EPSS
Exploits0
Rows per page
Query Builder