CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SUSE CVE•added 2023/02/15 4:12 a.m.•1 views

SUSE CVE-2019-11627

gpg-key2ps in signing-party 1.1.x and 2.x before 2.10-1 contains an unsafe shell call enabling shell injection via a User ID...

9.8CVSS7.4AI score0.02755EPSS

Exploits1References4

OpenVAS•added 2022/01/28 12:0 a.m.•16 views

Mageia: Security Advisory (MGASA-2019-0386)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.7AI score0.02755EPSS

Exploits1References4

OSV•added 2019/12/14 12:37 a.m.•6 views

MGASA-2019-0386 Updated signing-party packages fix security vulnerability

Updated signing-party package fixes security vulnerability: The gpg-key2ps tool in signing-party contained an unsafe shell call enabling shell injection via a User ID CVE-2019-11627...

Mageia•added 2019/12/14 12:37 a.m.•31 views

Updated signing-party packages fix security vulnerability

Updated signing-party package fixes security vulnerability: The gpg-key2ps tool in signing-party contained an unsafe shell call enabling shell injection via a User ID CVE-2019-11627...

10CVSS3AI score0.02755EPSS

OpenVAS•added 2019/05/22 12:0 a.m.•27 views

openSUSE: Security Advisory for signing-party (openSUSE-SU-2019:1388-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Tenable Nessus•added 2019/05/14 12:0 a.m.•20 views

openSUSE Security Update : signing-party (openSUSE-2019-1388)

This update for signing-party fixes the following issues : - CVE-2019-11627: The gpg-key2ps tool in signing-party contained an unsafe shell call enabling shell injection via a User ID. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

10CVSS7.2AI score0.02755EPSS

OSV•added 2019/05/13 6:28 a.m.•7 views

OPENSUSE-SU-2019:1388-1 Security update for signing-party

This update for signing-party fixes the following issues: - CVE-2019-11627: The gpg-key2ps tool in signing-party contained an unsafe shell call enabling shell injection via a User ID...

OPENSUSE Linux•added 2019/05/13 12:0 a.m.•150 views

Security update for signing-party (moderate)

openSUSE Security Update: Security update for signing-party Announcement ID: openSUSE-SU-2019:1388-1 Rating: moderate References: 1134040 Cross-References: CVE-2019-11627 Affected Products: openSUSE Leap 42.3 openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description:...

10CVSS7.4AI score0.02755EPSS

Exploits1References1

OpenVAS•added 2019/05/02 12:0 a.m.•45 views

Debian: Security Advisory (DLA-1773-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Tenable Nessus•added 2019/05/02 12:0 a.m.•14 views

Debian DLA-1773-1 : signing-party security update

An unsafe shell call enabling shell injection via a user ID was corrected in gpg-key2ps, a tool to generate a PostScript file with OpenPGP key fingerprint slips. For Debian 8 'Jessie', this problem has been fixed in version 1.1.10-3+deb8u1. We recommend that you upgrade your signing-party package...

10CVSS7.2AI score0.02755EPSS