Hi, if I try and run this on Ubuntu:22.04 running on WSL2 on Windows I get the following error, if I set --graph True
:
Is vulnerable to CVE-2014-7187?
Yes
Your system is vulnerable to CVE-2014-7187
Traceback (most recent call last):
File "/mi-x/am_i_exploitable.py", line 126, in <module>
main()
File "/mi-x/am_i_exploitable.py", line 121, in main
checks_cve_id_parameter(args.cve_id, args.describe, args.debug, args.graph, container_name='')
File "/mi-x/am_i_exploitable.py", line 70, in checks_cve_id_parameter
run(vulnerability, describe, graph, debug, container_name)
File "/mi-x/am_i_exploitable.py", line 52, in run
run_cve_check(cve_id, describe, graph, debug, container_name)
File "/mi-x/am_i_exploitable.py", line 43, in run_cve_check
/usr/bin/xdg-open: 882: w3m: not found
xdg-open: no method available for opening 'Log4Shell.pdf'
cve_validation.main(describe, graph, debug, container_name)
File "/mi-x/cves/shellshock.py", line 283, in main
validation_flow_chart()
File "/mi-x/cves/shellshock.py", line 229, in validation_flow_chart
vol_graph = graphviz.Digraph('G', filename={CVE_ID})
File "/usr/local/lib/python3.10/dist-packages/graphviz/_tools.py", line 171, in wrapper
return func(*args, **kwargs)
File "/usr/local/lib/python3.10/dist-packages/graphviz/graphs.py", line 67, in __init__
super().__init__(name=name, comment=comment,
File "/usr/local/lib/python3.10/dist-packages/graphviz/dot.py", line 113, in __init__
super().__init__(**kwargs)
File "/usr/local/lib/python3.10/dist-packages/graphviz/saving.py", line 35, in __init__
self.filename = os.fspath(filename)
TypeError: expected str, bytes or os.PathLike object, not set
Is vulnerable to CVE-2014-7187?
Yes
Your system is vulnerable to CVE-2014-7187
NIMBUSPWN - CVE-2022-29799, CVE-2022-29800
...
...
Is it possible to handle the error that xdg-open can't open files (e.g., pdfs) and enable the scan to complete?
Thanks.