Vulnerability Description
A vulnerability, which was classified as problematic, was found in galaxy-data-resource up to 14.10.0. This affects an unknown part of the component Command Line Template. The manipulation leads to injection. Upgrading to version 14.10.1 is able to address this issue. The patch is named 50d65f45d3f5be5d1fbff2e45ac5cec075f07d42. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-218451.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Galaxyproject | Galaxy | < 14.10.1 |
Related Weaknesses (CWE)
References
- https://github.com/blankenberg/galaxy-data-resource/commit/50d65f45d3f5be5d1fbffPatchThird Party Advisory
- https://github.com/blankenberg/galaxy-data-resource/releases/tag/v14.10.1Third Party Advisory
- https://vuldb.com/?ctiid.218451Permissions RequiredThird Party AdvisoryVDB Entry
- https://vuldb.com/?id.218451Permissions RequiredThird Party AdvisoryVDB Entry
- https://github.com/blankenberg/galaxy-data-resource/commit/50d65f45d3f5be5d1fbffPatchThird Party Advisory
- https://github.com/blankenberg/galaxy-data-resource/releases/tag/v14.10.1Third Party Advisory
- https://vuldb.com/?ctiid.218451Permissions RequiredThird Party AdvisoryVDB Entry
- https://vuldb.com/?id.218451Permissions RequiredThird Party AdvisoryVDB Entry
FAQ
What is CVE-2015-10062?
CVE-2015-10062 is a vulnerability with a CVSS score of 5.5 (MEDIUM). A vulnerability, which was classified as problematic, was found in galaxy-data-resource up to 14.10.0. This affects an unknown part of the component Command Line Template. The manipulation leads to in...
How severe is CVE-2015-10062?
CVE-2015-10062 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-10062?
Check the references section above for vendor advisories and patch information. Affected products include: Galaxyproject Galaxy.