Shell Command Injection in obs-service-source_validator before 0.7

Shell Command Injection in obs-service-source_validator before 0.7

CVE-2017-9274 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

A shell command injection in the obs-service-source_validator before 0.7 could be used to execute code as the packager when checking RPM SPEC files with specific macro constructs.

Learn more about our Web Application Penetration Testing UK.