Search Results (Refine Search)
- Results Type: Overview
- Search Type: Search All
- CPE Vendor: cpe:/:tukaani
- CPE Product: cpe:/:tukaani:xz
- CPE Product Version: cpe:/:tukaani:xz:1.9
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2015-4035 |
scripts/xzgrep.in in xzgrep 5.2.x before 5.2.0, before 5.0.0 does not properly process file names containing semicolons, which allows remote attackers to execute arbitrary code by having a user run xzgrep on a crafted file name. Published: July 25, 2017; 2:29:00 PM -0400 |
V4.0:(not available) V3.0: 7.8 HIGH V2.0: 4.6 MEDIUM |