Lucene search
+L

7 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2022-24803

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Asciidoctor-include-ext is Asciidoctor's standard include processor reimplemented as an extension. Versions prior to 0.4.0, when used to render user-supplied...

10CVSS7.3AI score0.02719EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/02/05 9:59 p.m.7 views

CVE-2022-24803

Asciidoctor-include-ext is Asciidoctor’s standard include processor reimplemented as an extension. Versions prior to 0.4.0, when used to render user-supplied input in AsciiDoc markup, may allow an attacker to execute arbitrary system commands on the host operating system. This attack is possible...

10CVSS7.3AI score0.02719EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2022/04/01 12:15 a.m.40 views

CVE-2022-24803

Asciidoctor-include-ext is Asciidoctor’s standard include processor reimplemented as an extension. Versions prior to 0.4.0, when used to render user-supplied input in AsciiDoc markup, may allow an attacker to execute arbitrary system commands on the host operating system. This attack is possible...

10CVSS7.2AI score0.02719EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2022/03/31 11:30 p.m.5 views

CVE-2022-24803 Command Injection vulnerability in asciidoctor-include-ext

Asciidoctor-include-ext is Asciidoctor’s standard include processor reimplemented as an extension. Versions prior to 0.4.0, when used to render user-supplied input in AsciiDoc markup, may allow an attacker to execute arbitrary system commands on the host operating system. This attack is possible...

10CVSS9.6AI score0.02719EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/03/31 11:30 p.m.36 views

CVE-2022-24803 Command Injection vulnerability in asciidoctor-include-ext

Asciidoctor-include-ext is Asciidoctor’s standard include processor reimplemented as an extension. Versions prior to 0.4.0, when used to render user-supplied input in AsciiDoc markup, may allow an attacker to execute arbitrary system commands on the host operating system. This attack is possible...

10CVSS9.9AI score0.02719EPSS
Exploits1References3
CVE
CVE
added 2022/03/31 11:30 p.m.117 views

CVE-2022-24803

CVE-2022-24803 concerns the Asciidoctor-include-ext extension (pre-0.4.0) that processes user-supplied input in AsciiDoc. The root cause is a command-injection risk in the include extension, allowing arbitrary system commands on the host OS, even when allow-uri-read is disabled. The issue is miti...

10CVSS9.7AI score0.02719EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVE
added 2022/03/31 11:30 p.m.61 views

CVE-2022-24803

Asciidoctor-include-ext is Asciidoctor’s standard include processor reimplemented as an extension. Versions prior to 0.4.0, when used to render user-supplied input in AsciiDoc markup, may allow an attacker to execute arbitrary system commands on the host operating system. This attack is possible...

10CVSS9.7AI score0.02719EPSS
Exploits1
Rows per page
Query Builder