Vendor
Groff
Products
2
CVEs
2
Across products
3
Status
Private
Products
2- 2 CVEs
- 1 CVE
Recent CVEs
2| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2001-1022 | 0.04 | — | 0.11 | Jul 26, 2001 | Format string vulnerability in pic utility in groff 1.16.1 and other versions, and jgroff before 1.15, allows remote attackers to bypass the -S option and execute arbitrary commands via format string specifiers in the plot command. | |||
| CVE-2004-1296 | 0.00 | — | 0.00 | Dec 31, 2004 | The (1) eqn2graph and (2) pic2graph scripts in groff 1.18.1 allow local users to overwrite arbitrary files via a symlink attack on temporary files. |
- CVE-2001-1022Jul 26, 2001risk 0.04cvss —epss 0.11
Format string vulnerability in pic utility in groff 1.16.1 and other versions, and jgroff before 1.15, allows remote attackers to bypass the -S option and execute arbitrary commands via format string specifiers in the plot command.
- CVE-2004-1296Dec 31, 2004risk 0.00cvss —epss 0.00
The (1) eqn2graph and (2) pic2graph scripts in groff 1.18.1 allow local users to overwrite arbitrary files via a symlink attack on temporary files.