VYPR

Bcfg2

by Bcfg2

Source repositories

CVEs (2)

  • CVE-2012-3366Jul 3, 2012
    risk 0.00cvss epss 0.04

    The Trigger plugin in bcfg2 1.2.x before 1.2.3 allows remote attackers with root access to the client to execute arbitrary commands via shell metacharacters in the UUID field to the server process (bcfg2-server).

  • CVE-2011-3211Sep 16, 2011
    risk 0.00cvss epss 0.05

    The server in Bcfg2 1.1.2 and earlier, and 1.2 prerelease, allows remote attackers to execute arbitrary commands via shell metacharacters in data received from a client.