Sign In

CVE-2008-1688

SOURCE - nist

Summary

Unspecified vulnerability in GNU m4 before 1.4.11 might allow context-dependent attackers to execute arbitrary code, related to improper handling of filenames specified with the -F option. NOTE: it is not clear when this issue crosses privilege boundaries.

EPSS Score: 0.02874 (0.907)

Common Weakness Enumeration (CWE)

SOURCE - nist

CWE-noinfo

Sources (4)

Impacted images

debian

CREATED

UPDATED

SOURCE IDCVE-2008-1688
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow
PackageTypeOS NameOS VersionAffected RangesFix Versions
debian/m4debdebian12>=1.4.19-3Not yet available
debian/m4debdebian10>=1.4.18-2Not yet available
debian/m4debdebianunstable>=1.4.19-4Not yet available
debian/m4debdebian11>=1.4.18-5Not yet available
debian/m4debdebian13>=1.4.19-4Not yet available

Severity and metrics

No CVSS data available from this source.

nist

CREATED

UPDATED

SOURCE IDCVE-2008-1688
EXPLOITABILITY SCORE

10

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CWE-noinfo

CVSS SCORE

7.5high

ubuntu

CREATED

UPDATED

SOURCE IDCVE-2008-1688
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

redhat

CREATED

UPDATED

SOURCE IDCVE-2008-1688
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM SOURCE