CVE-2013-7085
EPSS 1.00%
Description
Uscan in devscripts 2.13.5, when USCAN_EXCLUSION is enabled, allows remote attackers to delete arbitrary files via a whitespace character in a filename.
How to fix CVE-2013-7085
To remediate CVE-2013-7085, upgrade the affected package to a fixed version below.
- Debian/devscripts—upgrade to 2.13.9 or later
Is CVE-2013-7085 being exploited?
Low — EPSS is 1.0%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 2.13.9