Lucene search
Redhat.comRH:CVE-2018-19960HistoryMay 20, 2022 - 10:42 p.m.
CVE-2018-19960
2022-05-2022:42:58
redhat.com
access.redhat.com
8
onionshare vulnerability
debug_mode
local file overwrite
cve-2018-19960
EPSS
0
Percentile
5.1%
The debug_mode function in web/web.py in OnionShare through 1.3.1, when --debug is enabled, uses the /tmp/onionshare_server.log pathname for logging, which might allow local users to overwrite files or obtain sensitive information by using this pathname.
Related
ubuntucve
ubuntucve
CVE-2018-19960
2018-12-07 00:00:00
osv
osv
CVE-2018-19960
2018-12-07 16:29:00
OnionShare Predictable Pathname
2022-05-14 01:36:38
python-onionshare-2.3.3-2.5 on GA media
2024-06-15 00:00:00
github
github
Withdrawn Advisory: OnionShare Predictable Pathname
2022-05-14 01:36:38
prion
prion
Design/Logic Flaw
2018-12-07 16:29:00
cvelist
cvelist
CVE-2018-19960
2018-12-07 16:00:00
nvd
nvd
CVE-2018-19960
2018-12-07 16:29:00
debiancve
debiancve
CVE-2018-19960
2018-12-07 16:29:00
cve
cve
CVE-2018-19960
2018-12-07 16:29:00