Lucene search
K

35 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/09 12:0 a.m.4 views

Siemens Ruggedcom ROX Static Code Injection (CVE-2024-32487)

less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation also requires the...

8.6CVSS7.3AI score0.00628EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2025/02/03 8:47 a.m.2 views

Security update for less

This update for less fixes the following issues: CVE-2024-32487: Fix a bug where mishandling of \n character in paths when LESSOPEN is set leads to OS command execution. bsc1222849 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate...

8.6CVSS7.4AI score0.00628EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/08/21 12:0 a.m.11 views

EulerOS Virtualization 2.11.0 : less (EulerOS-SA-2024-2180)

According to the versions of the less package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename....

8.6CVSS7.2AI score0.00628EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/08/20 12:0 a.m.21 views

EulerOS 2.0 SP12 : less (EulerOS-SA-2024-2217)

According to the versions of the less package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation...

8.6CVSS7.3AI score0.00628EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/08/20 12:0 a.m.18 views

EulerOS 2.0 SP12 : less (EulerOS-SA-2024-2241)

According to the versions of the less package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation...

8.6CVSS7.3AI score0.00628EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/16 12:0 a.m.19 views

EulerOS 2.0 SP9 : less (EulerOS-SA-2024-1938)

According to the versions of the less package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : closealtfile in filename.c in less before 606 omits shellquote calls for LESSCLOSE.CVE-2022-48624 less through 653 allows OS command execution via a...

8.6CVSS6.7AI score0.01059EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/07/15 1:12 a.m.4 views

less: OS command injection

An OS command injection flaw was found in Less. Since quoting is mishandled in filename.c, opening files with attacker-controlled file names can lead to OS command execution. Exploitation requires the LESSOPEN environment variable, which is set by default in many common cases...

8.6CVSS6.8AI score0.00628EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/07/09 10:4 a.m.4 views

less: OS command injection

An OS command injection flaw was found in Less. Since quoting is mishandled in filename.c, opening files with attacker-controlled file names can lead to OS command execution. Exploitation requires the LESSOPEN environment variable, which is set by default in many common cases...

8.6CVSS6.8AI score0.00628EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/07/09 10:3 a.m.5 views

less: OS command injection

An OS command injection flaw was found in Less. Since quoting is mishandled in filename.c, opening files with attacker-controlled file names can lead to OS command execution. Exploitation requires the LESSOPEN environment variable, which is set by default in many common cases...

8.6CVSS6.8AI score0.00628EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/07/08 11:12 a.m.5 views

less: OS command injection

An OS command injection flaw was found in Less. Since quoting is mishandled in filename.c, opening files with attacker-controlled file names can lead to OS command execution. Exploitation requires the LESSOPEN environment variable, which is set by default in many common cases...

8.6CVSS6.8AI score0.00628EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/06/06 9:37 a.m.6 views

less: OS command injection

An OS command injection flaw was found in Less. Since quoting is mishandled in filename.c, opening files with attacker-controlled file names can lead to OS command execution. Exploitation requires the LESSOPEN environment variable, which is set by default in many common cases...

8.6CVSS6.8AI score0.00628EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/05/30 2:41 p.m.13 views

less: OS command injection

An OS command injection flaw was found in Less. Since quoting is mishandled in filename.c, opening files with attacker-controlled file names can lead to OS command execution. Exploitation requires the LESSOPEN environment variable, which is set by default in many common cases...

8.6CVSS6.8AI score0.00628EPSS
Exploits0References6
Amazon
Amazon
added 2024/05/30 12:0 a.m.24 views

Important: less

Issue Overview: less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation als...

8.6CVSS9AI score0.00628EPSS
Exploits0
Amazon
Amazon
added 2024/05/30 12:0 a.m.7 views

Important: less

Issue Overview: less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation als...

8.6CVSS7.2AI score0.00628EPSS
Exploits0
OSV
OSV
added 2024/05/17 11:8 a.m.5 views

OESA-2024-1587 less security update

Less is a pager. A pager is a program that displays text files. Other pagers commonly in use are more and pg. Pagers are often used in command-line environments like the Unix shell and the MS-DOS command prompt to display files. Security Fixes: less through 653 allows OS command execution via a...

8.6CVSS7.2AI score0.00628EPSS
Exploits0References2
OSV
OSV
added 2024/05/10 9:50 a.m.10 views

SUSE-SU-2024:1598-2 Security update for less

This update for less fixes the following issues: - CVE-2024-32487: Fixed mishandling of \n character in paths when LESSOPEN is set leads to OS command execution. bsc1222849...

8.6CVSS8.9AI score0.00628EPSS
Exploits0References3
OSV
OSV
added 2024/05/10 9:50 a.m.8 views

SUSE-SU-2024:1598-1 Security update for less

This update for less fixes the following issues: - CVE-2024-32487: Fixed mishandling of \n character in paths when LESSOPEN is set leads to OS command execution. bsc1222849...

8.6CVSS8.9AI score0.00628EPSS
Exploits0References3
OSV
OSV
added 2024/05/07 2:23 p.m.3 views

SUSE-SU-2024:1550-1 Security update for less

This update for less fixes the following issues: - CVE-2024-32487: Fixed mishandling of \n character in paths when LESSOPEN is set leads to OS command execution. bsc1222849...

8.6CVSS8.9AI score0.00628EPSS
Exploits0References3
OSV
OSV
added 2024/05/06 12:55 p.m.6 views

SUSE-SU-2024:1534-1 Security update for less

This update for less fixes the following issues: - CVE-2024-32487: Fixed mishandling of \n character in paths when LESSOPEN is set leads to OS command execution. bsc1222849...

8.6CVSS8.9AI score0.00628EPSS
Exploits0References3
OSV
OSV
added 2024/04/26 11:7 a.m.5 views

OESA-2024-1502 less security update

Less is a pager. A pager is a program that displays text files. Other pagers commonly in use are more and pg. Pagers are often used in command-line environments like the Unix shell and the MS-DOS command prompt to display files. Security Fixes: less through 653 allows OS command execution via a...

8.6CVSS7.2AI score0.00628EPSS
Exploits0References2
Rows per page
Query Builder