Loading HuntDB...

GHSA-ppwj-j5xp-6rmh

GitHub Security Advisory

⚠ Unreviewed CRITICAL Has CVE

Advisory Details

An issue was discovered in OpenNDS before 10.1.3. It fails to sanitize the FAS key entry in the configuration file, allowing attackers that have direct or indirect access to this file to execute arbitrary OS commands.

Related CVEs

Key Information

GHSA ID
GHSA-ppwj-j5xp-6rmh
Published
January 26, 2024 6:30 AM
Last Modified
February 2, 2024 6:30 PM
CVSS Score
9.0 /10
Primary Ecosystem
Unknown
Primary Package
Unknown
GitHub Reviewed
✗ No

Dataset

Last updated: July 31, 2025 6:36 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.