Lifecycle Timeline
3DescriptionCVE.org
The poplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters.
Analysis
The poplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters.
Technical ContextAI
Classified as CWE-77 (Command Injection). The poplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters.
Affected ProductsAI
The poplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing
RemediationAI
Monitor vendor advisories for a patch.
Same weakness CWE-77 – Command Injection
View allSame technique Command Injection
View allShare
External POC / Exploit Code
Leaving vuln.today