CalvinBackup/CVEs-PoC
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2026-06-05 19:06:36 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
dc6e2cf7158eeb24cfecb4d64f4f1da9a8a732e2
CVEs-PoC/2020/CVE-2020-15709.md
T
marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024
2024-05-25 21:48:12 +02:00

18 lines
815 B
Markdown
Raw Blame History

### [CVE-2020-15709](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15709)
![](https://img.shields.io/static/v1?label=Product&message=add-apt-repository&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%200.98.9.*%3C%20%200.98.9.2%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-20%20Improper%20Input%20Validation&color=brighgreen)
### Description
Versions of add-apt-repository before 0.98.9.2, 0.96.24.32.14, 0.96.20.10, and 0.92.37.8ubuntu0.1~esm1, printed a PPA (personal package archive) description to the terminal as-is, which allowed PPA owners to provide ANSI terminal escapes to modify terminal contents in unexpected ways.
### POC
#### Reference
No PoCs from references.
#### Github
- https://github.com/404notf0und/CVE-Flow
Reference in New Issue View Git Blame Copy Permalink