2 matches found
Arbitrary Command Injection
Overview borgmatic is a Simple, configuration-driven backup software for servers and workstations Affected versions of this package are vulnerable to Arbitrary Command Injection via the command hook interpolation logic in borgmatic. An attacker can execute arbitrary shell commands by supplying...
GLSA-202405-13 : borgmatic: Shell Injection
The remote host is affected by the vulnerability described in GLSA-202405-13 borgmatic: Shell Injection Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. @NOAGENT@ The descriptive text...