Weakness Name | Source | |
---|---|---|
Improper Neutralization of Special Elements used in a Command ('Command Injection') The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component. |
Metrics | Score | Severity | CVSS Vector | Source |
---|---|---|---|---|
V2 | 6.5 | AV:N/AC:L/Au:S/C:P/I:P/A:P | [email protected] |
Mozilla>>Bugzilla >> Version To (including) 4.0.16
Mozilla>>Bugzilla >> Version 4.1
Mozilla>>Bugzilla >> Version 4.1.1
Mozilla>>Bugzilla >> Version 4.1.2
Mozilla>>Bugzilla >> Version 4.1.3
Mozilla>>Bugzilla >> Version 4.2
Mozilla>>Bugzilla >> Version 4.2
Mozilla>>Bugzilla >> Version 4.2
Mozilla>>Bugzilla >> Version 4.2.1
Mozilla>>Bugzilla >> Version 4.2.2
Mozilla>>Bugzilla >> Version 4.2.3
Mozilla>>Bugzilla >> Version 4.2.4
Mozilla>>Bugzilla >> Version 4.2.5
Mozilla>>Bugzilla >> Version 4.2.6
Mozilla>>Bugzilla >> Version 4.2.7
Mozilla>>Bugzilla >> Version 4.2.8
Mozilla>>Bugzilla >> Version 4.2.9
Mozilla>>Bugzilla >> Version 4.2.10
Mozilla>>Bugzilla >> Version 4.2.11
Mozilla>>Bugzilla >> Version 4.3
Mozilla>>Bugzilla >> Version 4.3.1
Mozilla>>Bugzilla >> Version 4.3.2
Mozilla>>Bugzilla >> Version 4.3.3
Mozilla>>Bugzilla >> Version 4.4
Mozilla>>Bugzilla >> Version 4.4
Mozilla>>Bugzilla >> Version 4.4
Mozilla>>Bugzilla >> Version 4.4.1
Mozilla>>Bugzilla >> Version 4.4.2
Mozilla>>Bugzilla >> Version 4.4.3
Mozilla>>Bugzilla >> Version 4.4.4
Mozilla>>Bugzilla >> Version 4.4.5
Mozilla>>Bugzilla >> Version 4.4.6
Mozilla>>Bugzilla >> Version 4.5
Mozilla>>Bugzilla >> Version 4.5.1
Mozilla>>Bugzilla >> Version 4.5.2
Mozilla>>Bugzilla >> Version 4.5.3
Mozilla>>Bugzilla >> Version 4.5.4
Mozilla>>Bugzilla >> Version 4.5.5
Mozilla>>Bugzilla >> Version 4.5.6
Fedoraproject>>Fedora >> Version 20
Fedoraproject>>Fedora >> Version 21