CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-2095

Untrusted search path vulnerability in Catfish 0.6.0 through 1.0.0, when a Fedora package such as 0.8.2-1 is not used, allows local users to gain privileges via a Trojan horse bin/catfish.pyc under the current working directory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 20.7%

CVSS Severity

CVSS v2 Score 4.6

References

Products affected by CVE-2014-2095

Catfish Project » Catfish » Version: 0.6.0

cpe:2.3:a:catfish_project:catfish:0.6.0
Catfish Project » Catfish » Version: 0.6.1

cpe:2.3:a:catfish_project:catfish:0.6.1
Catfish Project » Catfish » Version: 0.6.2

cpe:2.3:a:catfish_project:catfish:0.6.2
Catfish Project » Catfish » Version: 0.6.3

cpe:2.3:a:catfish_project:catfish:0.6.3
Catfish Project » Catfish » Version: 0.6.4

cpe:2.3:a:catfish_project:catfish:0.6.4
Catfish Project » Catfish » Version: 0.8.0

cpe:2.3:a:catfish_project:catfish:0.8.0
Catfish Project » Catfish » Version: 0.8.1

cpe:2.3:a:catfish_project:catfish:0.8.1
Catfish Project » Catfish » Version: 0.8.2

cpe:2.3:a:catfish_project:catfish:0.8.2
Catfish Project » Catfish » Version: 1.0.0

cpe:2.3:a:catfish_project:catfish:1.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-2095

Products

Pricing

Contact Us