← back
CVE-2017-12588

CVE-2017-12588

EPSS 2.8%
The zmq3 input and output modules in rsyslog before 8.28.0 interpreted description fields as format strings, possibly allowing a format string attack with unspecified impact.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/rsyslog/rsyslog/blob/master/ChangeLoghttps://github.com/rsyslog/rsyslog/commit/062d0c671a29f7c6f7dff4a2f1f35df375bbb30bhttps://github.com/rsyslog/rsyslog/pull/1565https://security.netapp.com/advisory/ntap-20241227-0009/