CVE-2017-10685

CVE-2017-10685

EPSS 4.3%

In ncurses 6.0, there is a format string vulnerability in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://bugzilla.redhat.com/show_bug.cgi?id=1464692 https://security.gentoo.org/glsa/201804-13