Vulnerability Details CVE-2013-2208
tpp 1.3.1 allows remote attackers to execute arbitrary commands via a --exec command in a TPP template file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.9%
CVSS Severity
CVSS v2 Score 6.8
References
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706644
- http://security.gentoo.org/glsa/glsa-201309-19.xml
- http://www.openwall.com/lists/oss-security/2013/06/21/4
- https://github.com/akrennmair/tpp/pull/2
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706644
- http://security.gentoo.org/glsa/glsa-201309-19.xml
- http://www.openwall.com/lists/oss-security/2013/06/21/4
- https://github.com/akrennmair/tpp/pull/2
Products affected by CVE-2013-2208
-
cpe:2.3:a:andreas_krennmair:tpp:1.3.1