Vulnerabilities > ZSH > ZSH > 5.5
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-02-14 | CVE-2021-45444 | In zsh before 5.8.1, an attacker can achieve code execution if they control a command output inside the prompt, as demonstrated by a %F argument. | 7.8 |
2020-02-24 | CVE-2019-20044 | Improper Check for Dropped Privileges vulnerability in multiple products In Zsh before 5.8, attackers able to execute commands can regain privileges dropped by the --no-PRIVILEGED option. | 7.8 |
2018-09-05 | CVE-2018-13259 | Improper Input Validation vulnerability in multiple products An issue was discovered in zsh before 5.6. | 7.5 |
2018-09-05 | CVE-2018-0502 | Improper Input Validation vulnerability in multiple products An issue was discovered in zsh before 5.6. | 7.5 |