Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2020/04/10 12:0 a.m.37 views

Fedora 30 : pacman (2020-096fbcc91f)

Update to latest version. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network...

9.8CVSS8.3AI score0.03672EPSS
Exploits2References3
CVE
CVE
added 2020/02/24 2:38 p.m.57 views

CVE-2019-18182

The CVE-2019-18182 entry concerns pacman before 5.2. The vulnerability is a command-injection in download_with_xfercommand() in conf.c, exploitable when unsigned databases are used and a non-default XferCommand is enabled, with attacker-controlled database data. Impact is arbitrary command execut...

9.8CVSS9.4AI score0.03672EPSS
Exploits1References6Affected Software1
AlpineLinux
AlpineLinux
added 2020/02/24 2:38 p.m.25 views

CVE-2019-18182

pacman before 5.2 is vulnerable to arbitrary command injection in conf.c in the downloadwithxfercommand function. This can be exploited when unsigned databases are used. To exploit the vulnerability, the user must enable a non-default XferCommand and retrieve an attacker-controlled crafted databa...

9.8CVSS9.7AI score0.03672EPSS
Exploits1
ArchLinux
ArchLinux
added 2019/10/23 12:0 a.m.33 views

[ASA-201910-13] pacman: arbitrary command execution

Arch Linux Security Advisory ASA-201910-13 ========================================== Severity: High Date : 2019-10-23 CVE-ID : CVE-2019-18182 CVE-2019-18183 Package : pacman Type : arbitrary command execution Remote : Yes Link : https://security.archlinux.org/AVG-1049 Summary ======= The package...

9.8CVSS2.2AI score0.03672EPSS
Exploits2References7
Rows per page
Query Builder