CVE-2017-7480

Summary

rkhunter versions before 1.4.4 are vulnerable to file download over insecure channel when doing mirror update resulting into potential remote code execution.

Affected Software

VendorProductVersion RangeStatus
Red Hat, Inc.rkhunterbefore 1.4.4affected

Weaknesses

  • CWE-300: CWE-300

ADP Enrichment

CVE Program Container

Additional References

References