VYPR

Global

by GNU

CVEs (1)

  • CVE-2017-17531HigDec 14, 2017
    risk 0.57cvss 8.8epss 0.01

    gozilla.c in GNU GLOBAL 4.8.6 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL.