EUVD-2024-54826

Malicious code in bioql PyPI...

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the { and \xa0 characters, which may facilitate command injection.

...

Linux Distros Unpatched Vulnerability : CVE-2024-58266

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection. CVE-2024-58266...

SUSE CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

GHSA-286M-6PG9-V42V Duplicate Advisory: Multiple issues involving quote API in shlex

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-r7qv-8r2h-pg27. This link is maintained to preserve external references. Original Description The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may...

Duplicate Advisory: Multiple issues involving quote API in shlex

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-r7qv-8r2h-pg27. This link is maintained to preserve external references. Original Description The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may...

CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

DEBIAN-CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

AZL-66017 CVE-2024-58266 affecting package rust 1.72.0-14

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

AZL-66029 CVE-2024-58266 affecting package rust 1.75.0-25

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

AZL-66035 CVE-2024-58266 affecting package rust for versions less than 1.86.0-3

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

CVE-2024-58266

The CVE-2024-58266 entry concerns the shlex crate for Rust, affected in versions before 1.2.1. The root cause is that unquoted and unescaped instances of the characters { and �a0 may be processed in command arguments, potentially enabling command injection. Impact is described as high in network-...

shlex crate 安全漏洞

shlex crate is a Rust library by comex individual developers. A security vulnerability exists in shlex crate versions prior to 1.2.1 that stems from unquoted and xa0 characters that may lead to command injection...

CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

PT-2025-31025 · Shlex +1 · Shlex +1

Name of the Vulnerable Software and Affected Versions: shlex crate versions prior to 1.2.1 Description: The shlex crate before version 1.2.1 for Rust allows unquoted and unescaped instances of the and xa0 characters, which may facilitate command injection. Recommendations: Update the shlex crate ...