1 results (0.002 seconds)
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2014-8119 – netcf: augeas path expression injection via interface name
https://notcve.org/view.php?id=CVE-2014-8119
20 Nov 2015 — The find_ifcfg_path function in netcf before 0.2.7 might allow attackers to cause a denial of service (application crash) via vectors involving augeas path expressions. La función find_ifcfg_path en netcf en versiones anteriores a la 0.2.7 podría permitir que atacantes provoquen una denegación de servicio (cierre inesperado de la aplicación) mediante vectores que implican expresiones de ruta de augeas. A denial of service flaw was found in netcf. A specially crafted interface name could cause an application... • http://lists.fedoraproject.org/pipermail/package-announce/2015-April/156571.html • CWE-20: Improper Input Validation CWE-476: NULL Pointer Dereference •