CVE-2017-14176

moderate-risk

Published 2017-11-27

Bazaar through 2.7.0, when Subprocess SSH is used, allows remote attackers to execute arbitrary commands via a bzr+ssh URL with an initial dash character in the hostname, a related issue to CVE-2017-9800, CVE-2017-12836, CVE-2017-12976, CVE-2017-16228, CVE-2017-1000116, and CVE-2017-1000117.

Do I need to act?

1.8% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 8.8/10 High

NETWORK / LOW complexity

Affected Products (6)

Debian Linux

Ubuntu Linux

Bazaar

Ubuntu Linux

Affected Vendors

Debian Canonical

References (14)

Issue Tracking http://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-14176.html

Issue Tracking http://www.ubuntu.com/usn/usn-3411-1

Issue Tracking https://bugs.debian.org/874429

Issue Tracking https://bugs.launchpad.net/bzr/+bug/1710979

Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=1486685

Issue Tracking https://bugzilla.suse.com/show_bug.cgi?id=1058214

Issue Tracking https://www.debian.org/security/2017/dsa-4052

Issue Tracking http://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-14176.html

Issue Tracking http://www.ubuntu.com/usn/usn-3411-1

Issue Tracking https://bugs.debian.org/874429

Issue Tracking https://bugs.launchpad.net/bzr/+bug/1710979

Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=1486685

Issue Tracking https://bugzilla.suse.com/show_bug.cgi?id=1058214

Issue Tracking https://www.debian.org/security/2017/dsa-4052

/ 100

moderate-risk

Severity 30/34 · Critical

Exploitability 5/34 · Minimal

Exposure 13/34 · Low