Lucene search
K

8 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:29 a.m.2 views

SUSE CVE-2014-2886

GKSu 2.0.2, when sudo-mode is not enabled, uses " double quote characters in a gksu-run-helper argument, which allows attackers to execute arbitrary commands in certain situations involving an untrusted substring within this argument, as demonstrated by an untrusted filename encountered during...

6.8CVSS7.3AI score0.02193EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2018/12/31 12:0 a.m.27 views

GLSA-201812-10 : GKSu: Arbitrary command execution

The remote host is affected by the vulnerability described in GLSA-201812-10 GKSu: Arbitrary command execution A vulnerability was discovered in GKSus gksu-run-helper. Impact : An attacker could execute arbitrary commands. Workaround : There is no known workaround at this time. C Tenable Network...

6.8CVSS5.9AI score0.02193EPSS
Exploits1References2
NVD
NVD
added 2014/09/18 10:55 a.m.16 views

CVE-2014-2886

GKSu 2.0.2, when sudo-mode is not enabled, uses " double quote characters in a gksu-run-helper argument, which allows attackers to execute arbitrary commands in certain situations involving an untrusted substring within this argument, as demonstrated by an untrusted filename encountered during...

6.8CVSS7.2AI score0.02193EPSS
Exploits1References4
OSV
OSV
added 2014/09/18 10:55 a.m.5 views

UBUNTU-CVE-2014-2886

GKSu 2.0.2, when sudo-mode is not enabled, uses " double quote characters in a gksu-run-helper argument, which allows attackers to execute arbitrary commands in certain situations involving an untrusted substring within this argument, as demonstrated by an untrusted filename encountered during...

6.8CVSS6.1AI score0.02193EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2014/09/18 10:55 a.m.15 views

CVE-2014-2886

GKSu 2.0.2, when sudo-mode is not enabled, uses " double quote characters in a gksu-run-helper argument, which allows attackers to execute arbitrary commands in certain situations involving an untrusted substring within this argument, as demonstrated by an untrusted filename encountered during...

6.8CVSS6AI score0.02193EPSS
Exploits1References4
CVE
CVE
added 2014/09/18 10:0 a.m.43 views

CVE-2014-2886

GKSu 2.0.2 vulnerability (CVE-2014-2886): when sudo-mode is not enabled, gksu-run-helper processes an argument containing a double quote, enabling arbitrary command execution in scenarios with an untrusted substring (e.g., untrusted filename during VirtualBox extension pack install). Affected: GK...

6.8CVSS7.4AI score0.02193EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2014/09/18 10:0 a.m.20 views

CVE-2014-2886

GKSu 2.0.2, when sudo-mode is not enabled, uses " double quote characters in a gksu-run-helper argument, which allows attackers to execute arbitrary commands in certain situations involving an untrusted substring within this argument, as demonstrated by an untrusted filename encountered during...

7.2AI score0.02193EPSS
Exploits1References4
Prion
Prion
added 2014/08/15 11:15 a.m.14 views

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-2886, CVE-2014-2942. Reason: this ID was intended for one issue, but was assigned to two issues by a CNA. Notes: All CVE users should consult CVE-2014-2886 and CVE-2014-2942 to determine which ID is appropriate. All reference...

6.7AI score0.02193EPSS
Exploits1
Rows per page
Query Builder