CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-25817

Buffer Overflow vulnerability in eza before version 0.18.2, allows local attackers to execute arbitrary code via the .git/HEAD, .git/refs, and .git/objects components.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 22.8%

CVSS Severity

CVSS v3 Score 7.8

References

https://github.com/advisories/GHSA-3qx3-6hxr-j2ch
https://www.cubeyond.net/blog/my-cves/eza-cve-report
https://github.com/advisories/GHSA-3qx3-6hxr-j2ch
https://www.cubeyond.net/blog/my-cves/eza-cve-report

Products affected by CVE-2024-25817

Eza.rock » Eza » Version: Any

cpe:2.3:a:eza.rock:eza:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-25817

Products

Pricing

Contact Us