Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Veracode
Veracodeadded 2023/03/13 1:7 a.m.12 views

Arbitrary Code Execution

exuberant-ctags is vulnerable to Arbitrary Code Execution. The vulnerability exists due to the improper handling of the "-o" option in externalSortTags of sort.c, allowing an attacker to inject and execute malicious code...

7.8CVSS7.5AI score0.00734EPSS
Exploits1References3Affected Software2
Prion
Prionadded 2022/12/20 7:15 p.m.12 views

Design/Logic Flaw

A flaw was found in Exuberant Ctags in the way it handles the "-o" option. This option specifies the tag filename. A crafted tag filename specified in the command line or in the configuration file results in arbitrary command execution because the externalSortTags in sort.c calls the system3...

4.4CVSS7.5AI score0.00734EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVEadded 2022/12/20 12:0 a.m.26 views

CVE-2022-4515

A flaw was found in Exuberant Ctags in the way it handles the "-o" option. This option specifies the tag filename. A crafted tag filename specified in the command line or in the configuration file results in arbitrary command execution because the externalSortTags in sort.c calls the system3...

7.8CVSS7.7AI score0.00734EPSS
Exploits1
CNNVD
CNNVDadded 2022/12/19 12:0 a.m.1 views

Ctags 操作系统命令注入漏洞

Ctags is Sourceforge open source for generating indexed files from a program's source code tree, thus facilitating text editors to achieve rapid location of the utility. Ctags has a security vulnerability that originates from externalSortTags in sort.c calling the system3 function in an unsafe...

7.8CVSS7.2AI score0.00734EPSS
Exploits1References8
Prion
Prionadded 2020/01/24 5:15 p.m.15 views

Integer overflow

Integer overflow in the keycomparemb function in sort.c in sort in GNU Coreutils through 8.23 might allow attackers to cause a denial of service application crash or possibly have unspecified other impact via long strings...

7.5CVSS7.9AI score0.00398EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2020/01/24 4:59 p.m.76 views

CVE-2015-4042

CVE-2015-4042 affects GNU Coreutils (sort) up to version 8.23, where the keycompare_mb function in sort.c uses a size calculation that does not account for multibyte characters. This can allow a specially crafted long UTF-8 string to trigger an integer overflow, potentially causing a denial of se...

9.8CVSS9.7AI score0.00398EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2020/01/24 4:59 p.m.17 views

CVE-2015-4042

Integer overflow in the keycomparemb function in sort.c in sort in GNU Coreutils through 8.23 might allow attackers to cause a denial of service application crash or possibly have unspecified other impact via long strings...

9.8AI score0.00398EPSS
Exploits1References2
CNVD
CNVDadded 2015/05/26 12:0 a.m.1 views

Multiple buffer overflow vulnerabilities in GNU Coreutils 'src/sort.c'

GNU Core Utilities is a collection of some basic system administration tools provided by the GNU organization. Multiple buffer overflow vulnerabilities exist in GNU Coreutils. An attacker can exploit the vulnerabilities to execute arbitrary code in the context of the affected application...

8.1AI score
Exploits0References1
Rows per page
Query Builder