Lucene search
K

5 matches found

OSV
OSV
added 2017/12/14 4:29 p.m.7 views

CVE-2017-17532

examples/framework/news/news3.py in Kiwi 1.9.22 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL...

8.8CVSS8.5AI score0.01635EPSS
Exploits0References1
NVD
NVD
added 2017/12/14 4:29 p.m.16 views

CVE-2017-17532

examples/framework/news/news3.py in Kiwi 1.9.22 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL...

8.8CVSS8.5AI score0.01635EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2017/12/14 4:29 p.m.23 views

CVE-2017-17532

examples/framework/news/news3.py in Kiwi 1.9.22 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL...

8.8CVSS7.3AI score0.01635EPSS
Exploits0References3
CVE
CVE
added 2017/12/14 4:0 p.m.52 views

CVE-2017-17532

CVE-2017-17532 affects Kiwi 1.9.22, where the code path that launches the program specified by the BROWSER environment variable does not validate strings before use. This could allow remote attackers to perform argument-injection attacks via a crafted URL. The linked data provides CVSS metrics (C...

8.8CVSS8.4AI score0.01635EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2017/12/14 4:0 p.m.27 views

CVE-2017-17532

examples/framework/news/news3.py in Kiwi 1.9.22 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL...

8.8CVSS8.5AI score0.01635EPSS
Exploits0
Rows per page
Query Builder