本ページは debian reportbug に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2014-0479 | reportbug before 6.4.4+deb7u1 and 6.5.x before 6.5.0+nmu1 allows remote attackers to execute arbitrary commands via vectors related to compare_versions and reportbug/checkversions.py. | [email protected] | 6.8 | 0.68% | 2014-08-06 | 2026-05-06 |
| CVE-2005-0625 | reportbug 3.2 includes settings from .reportbugrc in bug reports, which exposes sensitive information such as smtpuser and smtppasswd. | [email protected] | 2.1 | 0.06% | 2005-02-28 | 2026-04-16 |
| CVE-2005-0624 | reportbug before 2.62 creates the .reportbugrc configuration file with world-readable permissions, which allows local users to obtain email smarthost passwords. | [email protected] | 2.1 | 0.06% | 2005-02-28 | 2026-04-16 |