Lucene search

K

DebianCVELIST:CVE-2015-8747

HistoryFeb 03, 2016 - 3:00 p.m.

CVE-2015-8747

2016-02-0315:00:00

debian

www.cve.org

2

AI Score

9.1

Confidence

High

EPSS

0.005

Percentile

76.7%

The multifilesystem storage backend in Radicale before 1.1 allows remote attackers to read or write to arbitrary files via a crafted component name.

References

lists.fedoraproject.org/pipermail/package-announce/2016-January/175738.html

lists.fedoraproject.org/pipermail/package-announce/2016-January/175776.html

www.debian.org/security/2016/dsa-3462

www.openwall.com/lists/oss-security/2016/01/05/7

www.openwall.com/lists/oss-security/2016/01/06/4

www.openwall.com/lists/oss-security/2016/01/06/7

www.securityfocus.com/bid/80255

github.com/Kozea/Radicale/pull/343

github.com/Unrud/Radicale/commit/bcaf452e516c02c9bed584a73736431c5e8831f1

AI Score

9.1

Confidence

High

EPSS

0.005

Percentile

76.7%

Related for CVELIST:CVE-2015-8747

cve1 ubuntucve1 debiancve1 osv3 prion1 github1 nvd1 debian2 freebsd1 nessus5 openvas3 fedora2