Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2017-17534

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - uiutil.c in Mensis 0.0.080507 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote...

8.8CVSS6.9AI score0.0122EPSS
Exploits0References2
OSV
OSV
added 2017/12/14 4:29 p.m.3 views

CVE-2017-17534

uiutil.c in Mensis 0.0.080507 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, a different vulnerability than CVE-2017-17521...

8.8CVSS5.8AI score0.0122EPSS
Exploits0References1
NVD
NVD
added 2017/12/14 4:29 p.m.22 views

CVE-2017-17534

uiutil.c in Mensis 0.0.080507 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, a different vulnerability than CVE-2017-17521...

8.8CVSS8.4AI score0.0122EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2017/12/14 4:29 p.m.18 views

CVE-2017-17534

uiutil.c in Mensis 0.0.080507 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, a different vulnerability than CVE-2017-17521...

8.8CVSS6.9AI score0.0122EPSS
Exploits0References3
OSV
OSV
added 2017/12/14 4:29 p.m.28 views

CVE-2017-17521

uiutil.c in FontForge through 20170731 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, a different vulnerability than CVE-2017-17534...

8.8CVSS6.7AI score0.01834EPSS
Exploits0References1
NVD
NVD
added 2017/12/14 4:29 p.m.35 views

CVE-2017-17521

uiutil.c in FontForge through 20170731 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, a different vulnerability than CVE-2017-17534...

8.8CVSS8.4AI score0.01834EPSS
Exploits0References1
Prion
Prion
added 2017/12/14 4:29 p.m.17 views

Design/Logic Flaw

uiutil.c in FontForge through 20170731 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, a different vulnerability than CVE-2017-17534...

6.8CVSS8.4AI score0.01834EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2017/12/14 4:0 p.m.49 views

CVE-2017-17534

Technical details for CVE-2017-17534 are not publicly available in the provided documents. Monitor for updates from vendors and vulnerability databases.

8.8CVSS8.3AI score0.0122EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2017/12/14 4:0 p.m.34 views

CVE-2017-17534

uiutil.c in Mensis 0.0.080507 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, a different vulnerability than CVE-2017-17521...

8.5AI score0.0122EPSS
Exploits0References1
Rows per page
Query Builder