Aggregates CVE and security vulnerability intelligence across all sentex-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk input validation, vendor risk path handling, and vendor risk buffer overflow, with potential vendor impact unexpected behavior across vendor surface software deployment use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2008-4641 | The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and earlier allows attackers to execute arbitrary commands via shell metacharacters in unspecified input. | [email protected] | 10.0 | 2.20% | 2008-10-21 | 2026-04-23 |
| CVE-2008-4640 | The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users to delete arbitrary files via vectors involving a modified input filename in which (1) a final "z" character is replaced by a "t" character or (2) a final "t" character is replaced by a "z" character. | [email protected] | 3.6 | 0.30% | 2008-10-21 | 2026-04-23 |
| CVE-2008-4639 | jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file. | [email protected] | 4.6 | 0.32% | 2008-10-21 | 2026-04-23 |
| CVE-2008-4575 | Buffer overflow in the DoCommand function in jhead before 2.84 might allow context-dependent attackers to cause a denial of service (crash) via (1) a long -cmd argument and (2) unspecified vectors related to "a bunch of potential string overflows." | [email protected] | 5.0 | 1.73% | 2008-10-15 | 2026-04-23 |