Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows malicious users to execute arbitrary commands via shell metacharacters in an unspecified FileUtils function call.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
marcus schafer kiwi |
||
novell suse studio onsite 1.1 |