Lucene search

K
githubGitHub Advisory DatabaseGHSA-Q8HR-4W58-985P
HistorySep 12, 2023 - 3:30 p.m.

Cecil Path Traversal vulnerability

2023-09-1215:30:20
CWE-22
CWE-23
GitHub Advisory Database
github.com
5
path traversal
github
repository
cecil
software

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

0.001 Low

EPSS

Percentile

36.9%

Relative Path Traversal in GitHub repository cecilapp/cecil prior to 7.47.1.

Affected configurations

Vulners
Node
cecilcecilRange<7.47.1
CPENameOperatorVersion
cecil/cecillt7.47.1

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

0.001 Low

EPSS

Percentile

36.9%

Related for GHSA-Q8HR-4W58-985P