Skip to main content

Picocom

1 CVEs product

Monthly

CVE-2015-9059 CRITICAL PATCH Act Now

picocom before 2.0 has a command injection vulnerability in the 'send and receive file' command because the command line is executed by /bin/sh unsafely. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 16.7%.

Command Injection Picocom
NVD GitHub
CVSS 3.0
9.8
EPSS
16.7%
EPSS 17% CVSS 9.8
CRITICAL PATCH Act Now

picocom before 2.0 has a command injection vulnerability in the 'send and receive file' command because the command line is executed by /bin/sh unsafely. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 16.7%.

Command Injection Picocom
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy