21 matches found
K000152311: Busybox vulnerabilities CVE-2022-28391 and CVE-2022-30065
Security Advisory Description CVE-2022-28391 BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible terminal. Alternatively, the attacker could choose to change the terminal's colors. CVE-2022-30065 A...
Siemens SIMATIC S7-1500 TM MFP BIOS Missing Encryption of Sensitive Data (CVE-2022-28391)
BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible terminal. Alternatively, the attacker could choose to change the terminal's colors. This plugin only works with Tenable.ot. Please visit...
Advisory ROSA-SA-2024-2426
software: busybox 1.36.1 OS: ROSA-CHROME packageevrstring: busybox-1.36.1-3 CVE-ID: CVE-2022-30065 BDU-ID: 2023-02631 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the copyvar function of the BusyBox suite of UNIX command line utilities is related to incorrect processing of a template created...
CVE-2022-28391 affecting package busybox for versions less than 1.36.1-3
CVE-2022-28391 affecting package busybox for versions less than 1.36.1-3. A patched version of the package is available...
CBL Mariner 2.0 Security Update: busybox (CVE-2022-28391)
The version of busybox installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-28391 advisory. - BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS...
EulerOS 2.0 SP10 : busybox (EulerOS-SA-2022-2126)
According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible...
Huawei EulerOS: Security Advisory for busybox (EulerOS-SA-2022-2151)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP10 : busybox (EulerOS-SA-2022-2151)
According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible...
Huawei EulerOS: Security Advisory for busybox (EulerOS-SA-2022-1958)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux AMI : busybox (ALAS-2022-1608)
The version of busybox installed on the remote host is prior to 1.34.1-1.14. It is, therefore, affected by a vulnerability as referenced in the ALAS-2022-1608 advisory. An escape sequence injection attack was found in BusyBox on Alpine. For this issue to occur, a remote host's virtual terminal mu...
Huawei EulerOS: Security Advisory for busybox (EulerOS-SA-2022-1988)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP9 : busybox (EulerOS-SA-2022-1958)
According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible...
EulerOS 2.0 SP9 : busybox (EulerOS-SA-2022-1988)
According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible...
Medium: busybox
Issue Overview: An escape sequence injection attack was found in BusyBox on Alpine. For this issue to occur, a remote host's virtual terminal must contain an escape sequence, and the victim must then execute netstat. This flaw allows an attacker can inject arbitrary code, leading to a loss of...
CVE-2022-28391 affecting package busybox for versions less than 1.35.0-2
CVE-2022-28391 affecting package busybox for versions less than 1.35.0-2. A patched version of the package is available...
Mageia: Security Advisory (MGASA-2022-0135)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated busybox packages fix security vulnerability
BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible terminal. Alternatively, the attacker could choose to change the terminal's colors. CVE-2022-28391...
MGASA-2022-0135 Updated busybox packages fix security vulnerability
BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible terminal. Alternatively, the attacker could choose to change the terminal's colors. CVE-2022-28391...
CVE-2022-28391 vulnerabilities
Vulnerabilities for packages: busybox...
CVE-2022-28391 vulnerabilities
Vulnerabilities for packages: busybox...