CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-0367

The Python AI module in Wesnoth 1.4.x and 1.5 before 1.5.11 allows remote attackers to escape the sandbox and execute arbitrary code by using a whitelisted module that imports an unsafe module, then using a hierarchical module name to access the unsafe module through the whitelisted module.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.067

EPSS Ranking 90.8%

CVSS Severity

CVSS v2 Score 9.3

References

Products affected by CVE-2009-0367

Wesnoth » Wesnoth » Version: 1.4

cpe:2.3:a:wesnoth:wesnoth:1.4
Wesnoth » Wesnoth » Version: 1.4.1

cpe:2.3:a:wesnoth:wesnoth:1.4.1
Wesnoth » Wesnoth » Version: 1.4.2

cpe:2.3:a:wesnoth:wesnoth:1.4.2
Wesnoth » Wesnoth » Version: 1.4.3

cpe:2.3:a:wesnoth:wesnoth:1.4.3
Wesnoth » Wesnoth » Version: 1.4.4

cpe:2.3:a:wesnoth:wesnoth:1.4.4
Wesnoth » Wesnoth » Version: 1.4.5

cpe:2.3:a:wesnoth:wesnoth:1.4.5
Wesnoth » Wesnoth » Version: 1.4.6

cpe:2.3:a:wesnoth:wesnoth:1.4.6
Wesnoth » Wesnoth » Version: 1.4.7

cpe:2.3:a:wesnoth:wesnoth:1.4.7
Wesnoth » Wesnoth » Version: 1.5.0

cpe:2.3:a:wesnoth:wesnoth:1.5.0
Wesnoth » Wesnoth » Version: 1.5.1

cpe:2.3:a:wesnoth:wesnoth:1.5.1
Wesnoth » Wesnoth » Version: 1.5.10

cpe:2.3:a:wesnoth:wesnoth:1.5.10
Wesnoth » Wesnoth » Version: 1.5.2

cpe:2.3:a:wesnoth:wesnoth:1.5.2
Wesnoth » Wesnoth » Version: 1.5.3

cpe:2.3:a:wesnoth:wesnoth:1.5.3
Wesnoth » Wesnoth » Version: 1.5.4

cpe:2.3:a:wesnoth:wesnoth:1.5.4
Wesnoth » Wesnoth » Version: 1.5.5

cpe:2.3:a:wesnoth:wesnoth:1.5.5
Wesnoth » Wesnoth » Version: 1.5.6

cpe:2.3:a:wesnoth:wesnoth:1.5.6
Wesnoth » Wesnoth » Version: 1.5.7

cpe:2.3:a:wesnoth:wesnoth:1.5.7
Wesnoth » Wesnoth » Version: 1.5.8

cpe:2.3:a:wesnoth:wesnoth:1.5.8
Wesnoth » Wesnoth » Version: 1.5.9

cpe:2.3:a:wesnoth:wesnoth:1.5.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-0367

Products

Pricing

Contact Us