Lucene search
MitreCVE-2023-25303HistoryApr 04, 2023 - 1:15 p.m.
CVE-2023-25303
2023-04-0413:15:08
CWE-22
mitre
web.nvd.nist.gov
105
atlauncher
vulnerability
cve-2023-25303
directory traversal
nvd
CVSS3
7.1
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
EPSS
0.001
Percentile
30.5%
ATLauncher <= 3.4.26.0 is vulnerable to Directory Traversal. A mrpack file can be maliciously crafted to create arbitrary files outside of the installation directory.
Affected configurations
Node
atlauncheratlauncherRange<3.4.27.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| atlauncher | atlauncher | * | cpe:2.3:a:atlauncher:atlauncher:*:*:*:*:*:*:*:* |
Related
prion
prion
Directory traversal
2023-04-04 13:15:00
nvd
nvd
CVE-2023-25303
2023-04-04 13:15:08
osv
osv
CVE-2023-25303
2023-04-04 13:15:08
cvelist
cvelist
CVE-2023-25303
2023-04-04 00:00:00
CVSS3
7.1
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
EPSS
0.001
Percentile
30.5%
Related for CVE-2023-25303