Lucene search

[email protected]CVE-2008-0932

HistoryFeb 25, 2008 - 9:44 p.m.

CVE-2008-0932

2008-02-2521:44:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2008-0932

diatheke.pl

the sword project

remote command execution

security vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

Low

0.015 Low

EPSS

Percentile

87.2%

JSON

diatheke.pl in The SWORD Project Diatheke 1.5.9 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the range parameter.

Affected configurations

NVD

Node

debiandebian_linuxMatch3.1

debiandebian_linuxMatch3.1alpha

debiandebian_linuxMatch3.1amd64

debiandebian_linuxMatch3.1arm

debiandebian_linuxMatch3.1hppa

debiandebian_linuxMatch3.1ia-32

debiandebian_linuxMatch3.1ia-64

debiandebian_linuxMatch3.1m68k

debiandebian_linuxMatch3.1mips

debiandebian_linuxMatch3.1mipsel

debiandebian_linuxMatch3.1ppc

debiandebian_linuxMatch3.1s-390

debiandebian_linuxMatch3.1sparc

debiandebian_linuxMatch3.1r1

debiandebian_linuxMatch4.0

debiandebian_linuxMatch4.0alpha

debiandebian_linuxMatch4.0amd64

debiandebian_linuxMatch4.0arm

debiandebian_linuxMatch4.0hppa

debiandebian_linuxMatch4.0ia-32

debiandebian_linuxMatch4.0ia-64

debiandebian_linuxMatch4.0m68k

debiandebian_linuxMatch4.0mips

debiandebian_linuxMatch4.0mipsel

debiandebian_linuxMatch4.0powerpc

debiandebian_linuxMatch4.0s-390

debiandebian_linuxMatch4.0sparc

redhatfedoraMatch7

redhatfedoraMatch8

AND

the_sword_projectdiatheke_front_endRange≤1.5.9

the_sword_projectswordRange≤1.5.9

CPENameOperatorVersion
the_sword_project:diatheke_front_endthe sword project diatheke front endle1.5.9
the_sword_project:swordthe sword project swordle1.5.9