The parse_command function in Genecys 0.2 and earlier allows remote attackers to cause a denial of service (crash) via a command with a missing ":" (colon) separator, which triggers a null dereference.

Threat-Mapped Scoring

Score: 1.5

Priority: P4 - Informational (Low)

• S10 – Denial of Service

EPSS

Score: 0.13811
Percentile: 0.93966

CVSS Scoring

Affected Products

• cpe:2.3:a:genecys:genecys:*:*:*:*:*:*:*:*

← Back to Home