232 matches found
EUVD-2003-0884
Malware in sbrugna...
EUVD-2003-0646
Malware in sbrugna...
EUVD-2005-4661
Malware in sbrugna...
EUVD-2002-1040
Malware in sbrugna...
EUVD-2018-8152
Malware in sbrugna...
EUVD-2004-2543
Malware in sbrugna...
EUVD-2018-6761
Malware in sbrugna...
EUVD-2021-19405
Malware in sbrugna...
EUVD-2022-5669
Malicious code in bioql PyPI...
EUVD-2021-6837
Malicious code in bioql PyPI...
EUVD-2023-44753
Malicious code in bioql PyPI...
EUVD-2022-31748
Malicious code in bioql PyPI...
CVE-2023-41057
hyper-bump-it is a command line tool for updating the version in project files.hyper-bump-it reads a file glob pattern from the configuration file. That is combined with the project root directory to construct a full glob pattern that is used to find files that should be edited. These matched fil...
CVE-2021-21813
Within the function HandleFileArg the argument filepattern is under control of the user who passes it in from the command line. filepattern is passed directly to memcpy copying the path provided by the user into a staticly sized buffer without any length checks resulting in a stack-buffer overflo...
CVE-2002-2089
Buffer overflow in rcp in Solaris 9.0 allows local users to execute arbitrary code via a long command line argument...
BIT-NODE-2024-27980
Due to the improper handling of batch files in childprocess.spawn / childprocess.spawnSync, a malicious command line argument can inject arbitrary commands and achieve code execution even if the shell option is not enabled...
CVE-2024-47611
XZ Utils provide a general-purpose data-compression library plus command-line tools. When built for native Windows MinGW-w64 or MSVC, the command line tools from XZ Utils 5.6.2 and older have a command line argument injection vulnerability. If a command line contains Unicode characters for exampl...
CVE-2024-45720 Apache Subversion: Command line argument injection on Windows platforms
On Windows platforms, a "best fit" character encoding conversion of command line arguments to Subversion's executables e.g., svn.exe, etc. may lead to unexpected command line argument interpretation, including argument injection and execution of other programs, if a specially crafted command line...
CVE-2024-45720 Apache Subversion: Command line argument injection on Windows platforms
On Windows platforms, a "best fit" character encoding conversion of command line arguments to Subversion's executables e.g., svn.exe, etc. may lead to unexpected command line argument interpretation, including argument injection and execution of other programs, if a specially crafted command line...
Privilege Escalation
github.com/snapcore/snapd is vulnerable to Privilege Escalation. The vulnerability is due to improper command-line argument parsing, allowing an unprivileged user to trigger actions that require administrator privileges...