High severity7.5NVD Advisory· Published Sep 6, 2017· Updated Jun 17, 2026
CVE-2015-5705
CVE-2015-5705
Description
Argument injection vulnerability in devscripts before 2.15.7 allows remote attackers to write to arbitrary files via a crafted symlink and crafted filename.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- cpe:2.3:a:devscripts_devel_team:devscripts:*:*:*:*:*:*:*:*Range: <=2.15.6
cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*
- Range: <2.15.7
Patches
Vulnerability mechanics
References
6- anonscm.debian.org/cgit/collab-maint/devscripts.git/commit/nvdPatchThird Party Advisory
- lists.fedoraproject.org/pipermail/package-announce/2015-August/163705.htmlnvdThird Party Advisory
- lists.fedoraproject.org/pipermail/package-announce/2015-August/163710.htmlnvdThird Party Advisory
- www.openwall.com/lists/oss-security/2015/08/01/7nvdMailing ListThird Party Advisory
- bugs.debian.org/cgi-bin/bugreport.cginvdIssue TrackingThird Party Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.