Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2015-4035

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scripts/xzgrep.in in xzgrep 5.2.x before 5.2.0, before 5.0.0 does not properly process file names containing semicolons, which allows remote attackers to execut...

7.8CVSS7.9AI score0.0099EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.10 views

RHEL 5 : xz (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - xzgrep: incorrect parsing of filenames containing a semicolon CVE-2015-4035 Note that Nessus has not tested for thi...

7.8CVSS7.8AI score0.0099EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.9 views

RHEL 6 : xz (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - xzgrep: incorrect parsing of filenames containing a semicolon CVE-2015-4035 Note that Nessus has not tested for thi...

7.8CVSS7.8AI score0.0099EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2017/07/25 6:0 p.m.29 views

CVE-2015-4035

scripts/xzgrep.in in xzgrep 5.2.x before 5.2.0, before 5.0.0 does not properly process file names containing semicolons, which allows remote attackers to execute arbitrary code by having a user run xzgrep on a crafted file name...

7.8CVSS7.9AI score0.0099EPSS
Exploits0
CVE
CVE
added 2017/07/25 6:0 p.m.45 views

CVE-2015-4035

CVE-2015-4035 affects the xzgrep utility. Technical details in connected sources show that the vulnerability lies in the scripts/xzgrep.in file within xzgrep, where filenames containing semicolons are not processed correctly. This allows a remote attacker to cause arbitrary code execution if a us...

7.8CVSS7.8AI score0.0099EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder