Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
sed command injection
Vulnerability Description
The set_version script as shipped with obs-service-set_version is a source validator for the Open Build Service (OBS). In versions prior to 0.5.3-1.1 this script did not properly sanitize the input provided by the user, allowing for code execution on the executing server.
CVSS Information
N/A
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
obs-service-set_version 安全漏洞
Vulnerability Description
obs-service-set_version是一个使用在Open Build Service(OBS)中的代码源验证器。 obs-service-set_version 0.5.3-1.1之前版中的set_version脚本存在安全漏洞,该漏洞源于程序没有正确的过滤用户提交的输入。攻击者可利用该漏洞执行代码。
CVSS Information
N/A
Vulnerability Type
N/A