Updated: 2025-12-28 03:20:23.735014
Description:
There is a stack overflow vulnerability in ash.c:6030 in busybox before 1.35. In the environment of Internet of Vehicles, this vulnerability can be executed from command to arbitrary code execution.
| Links | NIST | CIRCL | RHEL | Ubuntu |
| Severity | Score | |
|---|---|---|
| CVSS Version 2.x | 0.0 | |
| CVSS Version 3.x | CRITICAL | 9.8 |
| OS name | Project name | Version | Score | Severity | Status | Errata | Last updated | Statement |
|---|---|---|---|---|---|---|---|---|
| CentOS 6 ELS | busybox | 1.15.1 | 9.8 | CRITICAL | Released | CLSA-2023:1693906015 | 2023-09-21 05:08:25 | |
| CloudLinux 6 ELS | busybox | 1.15.1 | 9.8 | CRITICAL | Released | CLSA-2023:1693905869 | 2023-09-21 05:08:24 | |
| Debian 10 ELS | busybox | 1.30.1 | 9.8 | CRITICAL | Released | CLSA-2025:1760982550 | 2025-10-20 21:03:58 | |
| Oracle Linux 6 ELS | busybox | 1.15.1 | 9.8 | CRITICAL | Released | CLSA-2023:1693905084 | 2023-09-05 09:30:05 | |
| Ubuntu 16.04 ELS | busybox | 1.22.0 | 9.8 | CRITICAL | Released | CLSA-2023:1693904973 | 2023-09-05 09:30:03 | |
| Ubuntu 18.04 ELS | busybox | 1.27.2 | 9.8 | CRITICAL | Released | CLSA-2023:1693904834 | 2023-09-05 09:30:06 |