CVE-2024-58251
ADVISORY - nistSummary
In netstat in BusyBox through 1.37.0, local users can launch of network application with an argv[0] containing an ANSI terminal escape sequence, leading to a denial of service (terminal locked up) when netstat is used by a victim.
EPSS Score: 0.00023 (0.054)
Common Weakness Enumeration (CWE)
ADVISORY - nist
Improper Neutralization of Escape, Meta, or Control Sequences
Alpine
CREATED
UPDATED
ADVISORY IDCVE-2024-58251
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
| Package | Type | OS Name | OS Version | Affected Ranges | Fix Versions |
|---|---|---|---|---|---|
| alpine/busybox | apk | alpine | 3.22 | <1.37.0-r20 | 1.37.0-r20 |
| alpine/busybox | apk | alpine | 3.21 | <1.37.0-r14 | 1.37.0-r14 |
| alpine/busybox | apk | alpine | 3.24 | <1.37.0-r24 | 1.37.0-r24 |
| alpine/busybox | apk | alpine | 3.20 | <1.36.1-r31 | 1.36.1-r31 |
| alpine/busybox | apk | alpine | edge | <1.37.0-r24 | 1.37.0-r24 |
| alpine/busybox | apk | alpine | 3.23 | <1.37.0-r24 | 1.37.0-r24 |
Severity and metrics
No CVSS data available from this advisory.
NIST
CREATED
UPDATED
ADVISORY IDCVE-2024-58251
EXPLOITABILITY SCORE
1
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CVSS SCORE
2.5lowDebian
CREATED
UPDATED
ADVISORY IDCVE-2024-58251
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
Ubuntu
CREATED
UPDATED
ADVISORY IDCVE-2024-58251
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
CVSS SCORE
N/AmediumChainguard
CREATED
UPDATED
ADVISORY ID
CGA-w865-m7p5-hhrm
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
Chainguard
CREATED
UPDATED
ADVISORY ID
CGA-xfg8-9fg5-ch7x
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
minimos
CREATED
UPDATED
ADVISORY ID
MINI-9w5m-f95v-57hf
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-