Lucene search
+L

21 matches found

F5 Networks
F5 Networks
added 2025/07/01 6:32 p.m.9 views

K000152311: Busybox vulnerabilities CVE-2022-28391 and CVE-2022-30065

Security Advisory Description CVE-2022-28391 BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible terminal. Alternatively, the attacker could choose to change the terminal's colors. CVE-2022-30065 A...

8.8CVSS7.5AI score0.03505EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2025/02/25 12:0 a.m.21 views

Siemens SIMATIC S7-1500 TM MFP BIOS Missing Encryption of Sensitive Data (CVE-2022-28391)

BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible terminal. Alternatively, the attacker could choose to change the terminal's colors. This plugin only works with Tenable.ot. Please visit...

8.8CVSS7.2AI score0.03505EPSS
Exploits1References4
Rosalinux
Rosalinux
added 2024/05/28 8:29 a.m.43 views

Advisory ROSA-SA-2024-2426

software: busybox 1.36.1 OS: ROSA-CHROME packageevrstring: busybox-1.36.1-3 CVE-ID: CVE-2022-30065 BDU-ID: 2023-02631 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the copyvar function of the BusyBox suite of UNIX command line utilities is related to incorrect processing of a template created...

8.8CVSS8.1AI score0.03505EPSS
Exploits2
CBLMariner
CBLMariner
added 2024/03/19 5:21 p.m.33 views

CVE-2022-28391 affecting package busybox for versions less than 1.36.1-3

CVE-2022-28391 affecting package busybox for versions less than 1.36.1-3. A patched version of the package is available...

8.8CVSS8.7AI score0.03505EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2023/03/20 12:0 a.m.64 views

CBL Mariner 2.0 Security Update: busybox (CVE-2022-28391)

The version of busybox installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-28391 advisory. - BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS...

8.8CVSS7.7AI score0.03505EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/07/29 12:0 a.m.38 views

EulerOS 2.0 SP10 : busybox (EulerOS-SA-2022-2126)

According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible...

8.8CVSS7.7AI score0.03505EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/07/29 12:0 a.m.32 views

Huawei EulerOS: Security Advisory for busybox (EulerOS-SA-2022-2151)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.7AI score0.03505EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/07/29 12:0 a.m.42 views

EulerOS 2.0 SP10 : busybox (EulerOS-SA-2022-2151)

According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible...

8.8CVSS7.7AI score0.03505EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/07/08 12:0 a.m.34 views

Huawei EulerOS: Security Advisory for busybox (EulerOS-SA-2022-1958)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.7AI score0.03505EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/07/08 12:0 a.m.53 views

Amazon Linux AMI : busybox (ALAS-2022-1608)

The version of busybox installed on the remote host is prior to 1.34.1-1.14. It is, therefore, affected by a vulnerability as referenced in the ALAS-2022-1608 advisory. An escape sequence injection attack was found in BusyBox on Alpine. For this issue to occur, a remote host's virtual terminal mu...

8.8CVSS7.4AI score0.03505EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2022/07/08 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for busybox (EulerOS-SA-2022-1988)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.7AI score0.03505EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/07/08 12:0 a.m.57 views

EulerOS 2.0 SP9 : busybox (EulerOS-SA-2022-1958)

According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible...

8.8CVSS7.7AI score0.03505EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/07/08 12:0 a.m.48 views

EulerOS 2.0 SP9 : busybox (EulerOS-SA-2022-1988)

According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible...

8.8CVSS7.7AI score0.03505EPSS
Exploits1References2
Amazon
Amazon
added 2022/07/07 12:0 a.m.46 views

Medium: busybox

Issue Overview: An escape sequence injection attack was found in BusyBox on Alpine. For this issue to occur, a remote host's virtual terminal must contain an escape sequence, and the victim must then execute netstat. This flaw allows an attacker can inject arbitrary code, leading to a loss of...

8.8CVSS7.8AI score0.03505EPSS
Exploits1
CBLMariner
CBLMariner
added 2022/06/03 5:54 p.m.32 views

CVE-2022-28391 affecting package busybox for versions less than 1.35.0-2

CVE-2022-28391 affecting package busybox for versions less than 1.35.0-2. A patched version of the package is available...

8.8CVSS8.8AI score0.03505EPSS
Exploits1
OpenVAS
OpenVAS
added 2022/04/11 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2022-0135)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.7AI score0.03505EPSS
Exploits1References4
Mageia
Mageia
added 2022/04/09 9:20 p.m.49 views

Updated busybox packages fix security vulnerability

BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible terminal. Alternatively, the attacker could choose to change the terminal's colors. CVE-2022-28391...

8.8CVSS7AI score0.03505EPSS
Exploits1References3
OSV
OSV
added 2022/04/09 9:20 p.m.16 views

MGASA-2022-0135 Updated busybox packages fix security vulnerability

BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible terminal. Alternatively, the attacker could choose to change the terminal's colors. CVE-2022-28391...

8.8CVSS8.8AI score0.03505EPSS
Exploits1References4
Chainguard
Chainguard
added 2022/04/03 9:15 p.m.452 views

CVE-2022-28391 vulnerabilities

Vulnerabilities for packages: busybox...

8.8CVSS7.4AI score0.03505EPSS
Exploits1
Wolfi
Wolfi
added 2022/04/03 9:15 p.m.99 views

CVE-2022-28391 vulnerabilities

Vulnerabilities for packages: busybox...

8.8CVSS7.7AI score0.03505EPSS
Exploits1
Rows per page
Query Builder