Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveRedhatCVE-2012-2085
HistoryAug 28, 2012 - 5:55 p.m.

CVE-2012-2085

2012-08-2817:55:04
CWE-94
redhat
web.nvd.nist.gov
46
cve-2012-2085
gajim
exec_command function
vulnerability
remote code execution
nvd

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

Low

EPSS

0.017

Percentile

88.2%

JSON

The exec_command function in common/helpers.py in Gajim before 0.15 allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in an href attribute.

Affected configurations

Nvd
Node
gajimgajimRange0.14.4
OR
gajimgajimMatch0.1
OR
gajimgajimMatch0.10
OR
gajimgajimMatch0.10.1
OR
gajimgajimMatch0.11
OR
gajimgajimMatch0.11.1
OR
gajimgajimMatch0.11.2
OR
gajimgajimMatch0.11.3
OR
gajimgajimMatch0.11.4
OR
gajimgajimMatch0.12
OR
gajimgajimMatch0.12.1
OR
gajimgajimMatch0.12.2
OR
gajimgajimMatch0.12.3
OR
gajimgajimMatch0.12.4
OR
gajimgajimMatch0.12.5
OR
gajimgajimMatch0.12.5alpha1
OR
gajimgajimMatch0.12.5beta1
OR
gajimgajimMatch0.13
OR
gajimgajimMatch0.13.1
OR
gajimgajimMatch0.13.2
OR
gajimgajimMatch0.13.3
OR
gajimgajimMatch0.13.4
OR
gajimgajimMatch0.14
OR
gajimgajimMatch0.14.1
OR
gajimgajimMatch0.14.2
OR
gajimgajimMatch0.14.3
VendorProductVersionCPE
gajimgajim*cpe:2.3:a:gajim:gajim:*:*:*:*:*:*:*:*
gajimgajim0.1cpe:2.3:a:gajim:gajim:0.1:*:*:*:*:*:*:*
gajimgajim0.10cpe:2.3:a:gajim:gajim:0.10:*:*:*:*:*:*:*
gajimgajim0.10.1cpe:2.3:a:gajim:gajim:0.10.1:*:*:*:*:*:*:*
gajimgajim0.11cpe:2.3:a:gajim:gajim:0.11:*:*:*:*:*:*:*
gajimgajim0.11.1cpe:2.3:a:gajim:gajim:0.11.1:*:*:*:*:*:*:*
gajimgajim0.11.2cpe:2.3:a:gajim:gajim:0.11.2:*:*:*:*:*:*:*
gajimgajim0.11.3cpe:2.3:a:gajim:gajim:0.11.3:*:*:*:*:*:*:*
gajimgajim0.11.4cpe:2.3:a:gajim:gajim:0.11.4:*:*:*:*:*:*:*
gajimgajim0.12cpe:2.3:a:gajim:gajim:0.12:*:*:*:*:*:*:*
Rows per page:
1-10 of 261

Related

ubuntucve 1
cvelist 1
debiancve 1
prion 1
nvd 1
openvas 6
debian 2
gentoo 1
nessus 2
securityvulns 1
ubuntucve
ubuntucve
CVE-2012-2085
2012-08-28 00:00:00
cvelist
cvelist
CVE-2012-2085
2012-08-28 16:00:00
debiancve
debiancve
CVE-2012-2085
2012-08-28 17:55:04
prion
prion
Design/Logic Flaw
2012-08-28 17:55:00
nvd
nvd
CVE-2012-2085
2012-08-28 17:55:04
openvas
openvas
Gentoo Security Advisory GLSA 201208-04 (gajim)
2012-08-30 00:00:00
Debian Security Advisory DSA 2453-2 (gajim)
2012-04-30 00:00:00
Gentoo Security Advisory GLSA 201208-04 (gajim)
2012-08-30 00:00:00
debian
debian
[SECURITY] [DSA 2453-2] gajim regression
2012-04-19 00:35:37
[SECURITY] [DSA 2453-1] gajim security update
2012-04-16 05:23:39
gentoo
gentoo
Gajim: Multiple vulnerabilities
2012-08-14 00:00:00
nessus
nessus
GLSA-201208-04 : Gajim: Multiple vulnerabilities
2012-08-15 00:00:00
Debian DSA-2453-1 : gajim - several vulnerabilities
2012-04-17 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2453-1] gajim security update
2012-04-19 00:00:00

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

Low

EPSS

0.017

Percentile

88.2%

JSON
Related for CVE-2012-2085
ubuntucve1cvelist1debiancve1prion1nvd1openvas6debian2gentoo1nessus2securityvulns1