UBIReader vulnerability allows path traversal to overwrite files outside extraction directory
Reporter | Title | Published | Views | Family All 8 |
---|---|---|---|---|
OSV | CVE-2023-0591 | 31 Jan 202310:15 | – | osv |
OSV | Path traversal in ubi-reader | 31 Jan 202312:30 | – | osv |
OSV | PYSEC-2023-51 | 31 Jan 202310:15 | – | osv |
Veracode | Path Traversal | 1 Feb 202318:53 | – | veracode |
Cvelist | CVE-2023-0591 Path Traversal in ubi_reader | 31 Jan 202309:18 | – | cvelist |
NVD | CVE-2023-0591 | 31 Jan 202310:15 | – | nvd |
Prion | Path traversal | 31 Jan 202310:15 | – | prion |
Github Security Blog | Path traversal in ubi-reader | 31 Jan 202312:30 | – | github |
[
{
"collectionURL": "https://pypi.org/project/ubi-reader/",
"defaultStatus": "unaffected",
"modules": [
"ubireader_extract_files"
],
"packageName": "ubi-reader",
"product": "ubi_reader",
"repo": "https://github.com/jrspruitt/ubi_reader",
"vendor": " jrspruitt",
"versions": [
{
"lessThan": "0.8.5",
"status": "affected",
"version": "0",
"versionType": "0.8.4"
}
]
}
]
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo