CVE CVE-2020-5253 Mappings

NetHack before version 3.6.0 allowed malicious use of escaping of characters in the configuration file (usually .nethackrc) which could be exploited. This bug is patched in NetHack 3.6.0.


Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2020-5253 NetHack primary_impact T1574 Hijack Execution Flow
CVE-2020-5253 NetHack primary_impact T1499.004 Application or System Exploitation
CVE-2020-5253 NetHack exploitation_technique T1478 Install Insecure or Malicious Configuration