Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentMitreVULNRICHMENT:CVE-2024-27629
HistoryJun 28, 2024 - 12:00 a.m.

CVE-2024-27629

2024-06-2800:00:00
mitre
github.com
2
dc2niix
arbitrary code execution
system call
compression

AI Score

7.6

Confidence

High

SSVC

Exploitation

none

Automatable

no

Technical Impact

total

JSON

An issue in dc2niix before v.1.0.20240202 allows a local attacker to execute arbitrary code via the generated file name is not properly escaped and injected into a system call when certain types of compression are used.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:rordenlab:dcm2niix:*:*:*:*:*:*:*:*"
    ],
    "vendor": "rordenlab",
    "product": "dcm2niix",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "1.0.20240202",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Related

cvelist 1
ubuntucve 1
osv 2
nvd 1
debiancve 1
cve 1
cvelist
cvelist
CVE-2024-27629
2024-06-28 00:00:00
ubuntucve
ubuntucve
CVE-2024-27629
2024-06-28 00:00:00
osv
osv
CVE-2024-27629
2024-06-28 19:15:05
UBUNTU-CVE-2024-27629
2024-06-28 19:15:00
nvd
nvd
CVE-2024-27629
2024-06-28 19:15:05
debiancve
debiancve
CVE-2024-27629
2024-06-28 19:15:05
cve
cve
CVE-2024-27629
2024-06-28 19:15:05

AI Score

7.6

Confidence

High

SSVC

Exploitation

none

Automatable

no

Technical Impact

total

JSON
Related for VULNRICHMENT:CVE-2024-27629
cvelist1ubuntucve1osv2nvd1debiancve1cve1