CVE-2025-47203 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

dbclient in Dropbear SSH before 2025.88 allows command injection via an untrusted hostname argument, because a shell is used.
Medium CVSS: 4.5

CVE-2025-47203

dbclient in Dropbear SSH before 2025.88 allows command injection via an untrusted hostname argument, because a shell is used.
Vendor
-
Product
-
CWE
CWE-78
Yayın Tarihi
2025-05-07 18:15:43
Güncelleme
2025-05-17 22:15:18
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-78 MEDIUM 2025

Referanslar

https://github.com/mkj/dropbear/blob/master/CHANGES https://github.com/mkj/dropbear/blob/master/src/cli-main.c http://www.openwall.com/lists/oss-security/2025/05/09/4 http://www.openwall.com/lists/oss-security/2025/05/12/6 http://www.openwall.com/lists/oss-security/2025/05/13/1 http://www.openwall.com/lists/oss-security/2025/05/13/10 http://www.openwall.com/lists/oss-security/2025/05/13/3 https://lists.debian.org/debian-lts-announce/2025/05/msg00020.html