CVE-2024-58251

LOW Year: 2024
CVSS v3 Score
2.5
Low
Weakness Type
CWE-150
View all →

Vulnerability Description

In netstat in BusyBox through 1.37.0, local users can launch of network application with an argv[0] containing an ANSI terminal escape sequence, leading to a denial of service (terminal locked up) when netstat is used by a victim.

Related Vulnerabilities

CVE-2024-43785

LOW
CVSS:2.5(Low)

gitoxide An idiomatic, lean, fast & safe pure Rust implementation of Git. gitoxide-core, which provides most underlying functionality of the gix and ein commands, does not neutralize newlines, backspa...

CWE-1502024

CVE-2021-25743

LOW
CVSS:3.0(Low)

kubectl does not neutralize escape, meta or control sequences contained in the raw data it outputs to a terminal. This includes but is not limited to the unstructured string fields in objects such as ...

CWE-1502021

CVE-2024-28085

LOW
CVSS:3.3(Low)

wall in util-linux through 2.40, often installed with setgid tty permissions, allows escape sequences to be sent to other users' terminals through argv. (Specifically, escape sequences received from s...

CWE-1502024

CVE-2023-39342

LOW
CVSS:3.6(Low)

Dangerzone is software for converting potentially dangerous PDFs, office documents, or images to safe PDFs. The Dangerzone CLI (`dangerzone-cli` command) logs output from the container where the file ...

CWE-1502023

CVE-2025-1693

LOW
CVSS:3.9(Low)

The MongoDB Shell may be susceptible to control character injection where an attacker with control over the database cluster contents can inject control characters into the shell output. This may resu...

CWE-1502025

CVE-2022-30123

CRITICAL
CVSS:10.0(Critical)

A sequence injection vulnerability exists in Rack <2.0.9.1, <2.1.4.1 and <2.2.3.1 which could allow is a possible shell escape in the Lint and CommonLogger components of Rack.

CWE-1502022