CVE-2014-7208

GParted <0.15.0 - Command Injection

Title source: llm
STIX 2.1

Description

GParted before 0.15.0 allows local users to execute arbitrary commands with root privileges via shell metacharacters in a crafted filesystem label.

Exploits (1)

exploitdb WRITEUP
by SEC Consult · textlocallinux
https://www.exploit-db.com/exploits/35595

References (2)

Core 2
Core References
Exploit, Mailing List, Third Party Advisory mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2014/Dec/77

Scores

EPSS 0.0053
EPSS Percentile 67.4%

Details

CWE
CWE-77
Status published
Products (1)
gparted/gparted < 0.15.0
Published Dec 19, 2014
Tracked Since Feb 18, 2026