← voltar
CVE-2017-10906

CVE-2017-10906

EPSS 4.6%
Escape sequence injection vulnerability in Fluentd versions 0.12.29 through 0.12.40 may allow an attacker to change the terminal UI or execute arbitrary commands on the device via unspecified vectors.
Produtos afetados
Cloud Native Computing Foundation (CNCF) · Fluentd

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://access.redhat.com/errata/RHSA-2018:2225https://github.com/fluent/fluentd/blob/v0.12/CHANGELOG.md#bug-fixeshttps://github.com/fluent/fluentd/pull/1733https://jvn.jp/en/vu/JVNVU95124098/index.html