CVE-2021-27135
Description
xterm before Patch #366 allows remote attackers to execute arbitrary code or cause a denial of service (segmentation fault) via a crafted UTF-8 combining character sequence.
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
1.732
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| (RHSA-2021:0611) xterm security update xterm-331-1.el8_3.2.x86_64.rpm | Linux |
| (RHSA-2021:0611) xterm security update xterm-debugsource-331-1.el8_3.2.x86_64.rpm | Linux |
| (RHSA-2021:0611) xterm security update xterm-resize-331-1.el8_3.2.x86_64.rpm | Linux |
| X terminal emulator (USN-4746-1) xterm_322-1ubuntu1.2_i386.deb | Linux |
| X terminal emulator (USN-4746-1) xterm_322-1ubuntu1.2_amd64.deb | Linux |
| X terminal emulator (USN-4746-1) xterm_330-1ubuntu2.2_i386.deb | Linux |
| X terminal emulator (USN-4746-1) xterm_330-1ubuntu2.2_amd64.deb | Linux |
| X terminal emulator (USN-4746-1) xterm_353-1ubuntu1.20.04.2_i386.deb | Linux |
| X terminal emulator (USN-4746-1) xterm_353-1ubuntu1.20.04.2_amd64.deb | Linux |
| X terminal emulator (USN-4746-1) xterm_353-1ubuntu1.20.10.2_i386.deb | Linux |
| X terminal emulator (USN-4746-1) xterm_353-1ubuntu1.20.10.2_amd64.deb | Linux |
| (RHSA-2021:0617) xterm security update xterm-295-3.el7_9.1.x86_64.rpm | Linux |
| Xterm update (ELSA-2021-9066) xterm-253-1.0.1.el6.i686.rpm | Linux |
| Xterm update (ELSA-2021-9066) xterm-253-1.0.1.el6.x86_64.rpm | Linux |
| SUSE-SU-2021:2014-1(SUSE Linux Enterprise Server 12-SP5 ) xterm-308-5.3.1.x86_64.rpm | Linux |
| SUSE-SU-2021:2014-1(SUSE Linux Enterprise Server 12-SP5 ) xterm-debuginfo-308-5.3.1.x86_64.rpm | Linux |
| SUSE-SU-2021:2014-1(SUSE Linux Enterprise Server 12-SP5 ) xterm-debugsource-308-5.3.1.x86_64.rpm | Linux |
| (CESA-2021:0617) xterm security update xterm-295-3.el7_9.1.x86_64.rpm | Linux |
| (RHSA-2021:0611)Important: security update xterm-debuginfo-331-1.el8_3.2.x86_64.rpm | Linux |
| (RHSA-2021:0611)Important: security update xterm-resize-debuginfo-331-1.el8_3.2.x86_64.rpm | Linux |
| (RHSA-2021:0617)Important: security update xterm-debuginfo-295-3.el7_9.1.x86_64.rpm | Linux |
| xterm security update (RLSA-2021:0611) xterm-331-1.el8_3.2.x86_64.rpm | Linux |
| xterm security update (RLSA-2021:0611) xterm-resize-331-1.el8_3.2.x86_64.rpm | Linux |
| xterm Security Update (ALAS-2021-1619) xterm-295-3.amzn2.1.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234