Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-42444

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.0279EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2024/12/02 12:0 a.m.4 views

The vulnerability of the wordexp() function in the tinygltf library, a programming language, allows attackers to execute arbitrary code.

The vulnerability of the wordexp function in the tinygltf programming language library is related to the lack of measures taken to neutralize special elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending specially crafted commands...

10CVSS8.1AI score0.0279EPSS
Exploits1References5Affected Software2
OSV
OSV
added 2022/09/05 9:15 a.m.3 views

DEBIAN-CVE-2022-3008

The tinygltf library uses the C library function wordexp to perform file path expansion on untrusted paths that are provided from the input file. This function allows for command injection by using backticks. An attacker could craft an untrusted path input that would result in a path expansion. W...

8.8CVSS8AI score0.0279EPSS
Exploits1References1
NVD
NVD
added 2022/09/05 9:15 a.m.31 views

CVE-2022-3008

The tinygltf library uses the C library function wordexp to perform file path expansion on untrusted paths that are provided from the input file. This function allows for command injection by using backticks. An attacker could craft an untrusted path input that would result in a path expansion. W...

8.8CVSS0.0279EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2022/09/05 9:15 a.m.34 views

CVE-2022-3008

The tinygltf library uses the C library function wordexp to perform file path expansion on untrusted paths that are provided from the input file. This function allows for command injection by using backticks. An attacker could craft an untrusted path input that would result in a path expansion. W...

8.8CVSS7.2AI score0.0279EPSS
Exploits1References6
Prion
Prion
added 2022/09/05 9:15 a.m.22 views

Command injection

The tinygltf library uses the C library function wordexp to perform file path expansion on untrusted paths that are provided from the input file. This function allows for command injection by using backticks. An attacker could craft an untrusted path input that would result in a path expansion. W...

6.8CVSS8.9AI score0.0279EPSS
Exploits1References5Affected Software2
OSV
OSV
added 2022/09/05 9:10 a.m.22 views

CVE-2022-3008 Command Injection on tinygltf

The tinygltf library uses the C library function wordexp to perform file path expansion on untrusted paths that are provided from the input file. This function allows for command injection by using backticks. An attacker could craft an untrusted path input that would result in a path expansion. W...

8.1CVSS7.2AI score0.0279EPSS
Exploits1References7
Rows per page
Query Builder