Unrated severityNVD Advisory· Published Feb 26, 2014· Updated Apr 29, 2026
CVE-2014-2096
CVE-2014-2096
Description
Untrusted search path vulnerability in Catfish 0.6.0 through 1.0.0 allows local users to gain privileges via a Trojan horse bin/catfish.py under the current working directory.
Affected products
9cpe:2.3:a:catfish_project:catfish:0.6.0:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:catfish_project:catfish:0.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:catfish_project:catfish:0.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:catfish_project:catfish:0.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:catfish_project:catfish:0.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:catfish_project:catfish:0.6.4:*:*:*:*:*:*:*
- cpe:2.3:a:catfish_project:catfish:0.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:catfish_project:catfish:0.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:catfish_project:catfish:0.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:catfish_project:catfish:1.0.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4News mentions
0No linked articles in our index yet.