CVE-2012-5642

EPSS 1.6%

Published: 12/31/2012Modified: 4/28/2026

Description

server/action.py in Fail2ban before 0.8.8 does not properly handle the content of the matches tag, which might allow remote attackers to trigger unsafe behavior in a custom action file via unspecified symbols in this content.

Affected packages (1)

Debian/fail2banfrom 0, < 0.8.6-3wheezy1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-5642