Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2017-17532

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - examples/framework/news/news3.py in Kiwi 1.9.22 does not validate strings before launching the program specified by the BROWSER environment variable, which migh...

8.8CVSS8AI score0.01635EPSS
Exploits0References3
OSV
OSV
added 2017/12/14 4:29 p.m.7 views

CVE-2017-17532

examples/framework/news/news3.py in Kiwi 1.9.22 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL...

8.8CVSS8.5AI score0.01635EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2017/12/14 4:29 p.m.23 views

CVE-2017-17532

examples/framework/news/news3.py in Kiwi 1.9.22 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL...

8.8CVSS7.3AI score0.01635EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2017/12/14 4:0 p.m.17 views

CVE-2017-17532

examples/framework/news/news3.py in Kiwi 1.9.22 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL...

8.8CVSS8.5AI score0.01635EPSS
Exploits0
CVE
CVE
added 2017/12/14 4:0 p.m.52 views

CVE-2017-17532

CVE-2017-17532 affects Kiwi 1.9.22, where the code path that launches the program specified by the BROWSER environment variable does not validate strings before use. This could allow remote attackers to perform argument-injection attacks via a crafted URL. The linked data provides CVSS metrics (C...

8.8CVSS8.4AI score0.01635EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder