Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-10717
HistoryNov 22, 2021 - 12:00 a.m.

Alquist Path Traversal Vulnerability (CNVD-2022-10717)

2021-11-2200:00:00
China National Vulnerability Database
www.cnvd.org.cn
7

0.031 Low

EPSS

Percentile

91.1%

JSON

Alquist is an advanced conversational Ai bot used to have fun and engaging conversations with humans about popular topics such as movies, sports, news, etc. A security vulnerability exists in the Alquist Manager. The security vulnerability in Alquist Manager stems from a lack of effective filtering and escaping of user-submitted path data in the software’s alquist/IO/input.py file, leading to a directory traversal vulnerability, which could lead to an attack on critical secrets stored anywhere on the This attack could lead to the disclosure of critical secrets stored anywhere on the system, and could result in remote code access. No details of the vulnerability are available at this time.

Related

cvelist 1
nuclei 1
nvd 1
cve 1
prion 1
openvas 1
cvelist
cvelist
CVE-2021-43495
2021-11-15 12:26:59
nuclei
nuclei
AlquistManager Local File Inclusion
2021-11-23 01:30:30
nvd
nvd
CVE-2021-43495
2021-11-15 13:15:07
cve
cve
CVE-2021-43495
2021-11-15 13:15:07
prion
prion
Directory traversal
2021-11-15 13:15:00
openvas
openvas
Generic HTTP Directory Traversal (Web Dirs) - Active Check
2021-07-22 00:00:00

0.031 Low

EPSS

Percentile

91.1%

JSON
Related for CNVD-2022-10717
cvelist1nuclei1nvd1cve1prion1openvas1