CVE-2018-10932

lldptool version 1.0.1 and older can print a raw, unsanitized attacker controlled buffer when mngAddr information is displayed. This may allow an attacker to inject shell control characters into the buffer and impact the behavior of the terminal.
References
Configurations

Configuration 1

cpe:2.3:a:intel:lldptool:*:*:*:*:*:*:*:*

Information

Published : 2018-08-21 06:29

Updated : 2023-02-12 11:31


NVD link : CVE-2018-10932

Mitre link : CVE-2018-10932

Products Affected
No products.
CWE
CWE-117

Improper Output Neutralization for Logs