CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

OSV•added 2026/04/25 8:49 a.m.•3 views

CLSA-2026-1777051205 zsh: Fix of 3 CVEs

CVE-2018-1071: check bounds when copying path in hashcmd - CVE-2018-7549: avoid crash copying empty hash table - CVE-2018-13259: fix shebang line truncation in zexecve...

9.8CVSS5.8AI score0.0065EPSS

Exploits0References1

CloudLinux•added 2026/04/25 8:49 a.m.•4 views

zsh: Fix of 3 CVEs

CVE-2018-1071: check bounds when copying path in hashcmd - CVE-2018-7549: avoid crash copying empty hash table - CVE-2018-13259: fix shebang line truncation in zexecve...

9.8CVSS6.8AI score0.0065EPSS

Exploits0

OSV•added 2026/04/24 5:25 p.m.•3 views

CLSA-2026-1777051545 zsh: Fix of 3 CVEs

CVE-2018-1071: check bounds when copying path in hashcmd - CVE-2018-7549: avoid crash copying empty hash table - CVE-2018-13259: fix shebang line truncation in zexecve...

9.8CVSS6.8AI score0.0065EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-19276

Malware in sbrugna...

7.5CVSS8.5AI score0.00221EPSS

Exploits0References11

SUSE CVE•added 2023/02/15 4:29 a.m.•1 views

SUSE CVE-2018-7549

In params.c in zsh through 5.4.2, there is a crash during a copy of an empty hash table, as demonstrated by typeset -p...

3.3CVSS9.5AI score0.00221EPSS

Exploits0References7

OSV•added 2022/04/25 11:15 a.m.•0 views

CVE-2021-45841

In Terramaster F4-210, F2-210 TOS 4.2.X 4.2.15-2107141517, an attacker can self-sign session cookies by knowing the target's MAC address and the user's password hash. Guest users disabled by default can be abused using a null/empty hash and allow an unauthenticated attacker to login as guest...

8.1CVSS5.8AI score

Exploits0References2

Positive Technologies•added 2022/04/25 12:0 a.m.•2 views

PT-2022-12430 · Terramaster · Terramaster F2-210 +2

Name of the Vulnerable Software and Affected Versions: Terramaster F4-210, F2-210 TOS versions 4.2.X 4.2.15-2107141517 Description: The issue allows an attacker to self-sign session cookies if they know the target's MAC address and the user's password hash. Additionally, guest users, which are...

8.1CVSS8.9AI score0.65511EPSS

Exploits4References4

RedHat Linux•added 2018/10/30 9:54 a.m.•2 views

zsh: crash on copying empty hash table

A NULL pointer dereference flaw was found in the code responsible for saving hashtables of the zsh package. An attacker could use this flaw to cause a denial of service by crashing the user shell...

7.5CVSS7.4AI score0.00221EPSS

Exploits0References4

CNVD•added 2018/02/28 12:0 a.m.•0 views

zsh Denial of Service Vulnerability

Z Shell Zsh is a Unix shell that can be used as an interactive login shell and a powerful shell script command interpreter. A denial of service vulnerability exists in params.c in zsh versions 5.4.2 and earlier during the copying of an empty hash table. An attacker can exploit this vulnerability ...

7.5CVSS9.1AI score0.00221EPSS

Exploits0References1

OSV•added 2018/02/27 10:29 p.m.•1 views

DEBIAN-CVE-2018-7549

In params.c in zsh through 5.4.2, there is a crash during a copy of an empty hash table, as demonstrated by typeset -p...

7.5CVSS9.1AI score0.00221EPSS

Exploits0References1

Cvelist•added 2018/02/27 10:0 p.m.•18 views

CVE-2018-7549

In params.c in zsh through 5.4.2, there is a crash during a copy of an empty hash table, as demonstrated by typeset -p...

6.3AI score0.00221EPSS

Exploits0References4

CVE•added 2018/02/27 10:0 p.m.•103 views

CVE-2018-7549

CVE-2018-7549 affects zsh (through 5.4.2): a NULL pointer dereference in params.c during a copy of an empty hash table can crash the shell, enabling denial-of-service locally. Several advisories (Red Hat RHSA-2018:3073, CentOS CESA-2018:3073, Amazon Linux ALAS2-2018-986, Fedora advisories) note t...

7.5CVSS7.1AI score0.00221EPSS

Exploits0References4Affected Software1