Lucene search

Minecraft Security Vulnerabilities

cve

CVE-2021-35054

Minecraft before 1.17.1, when online-mode=false is configured, allows path traversal for deletion of arbitrary JSON files.

7.5CVSS

7.6AI Score

0.001EPSS

2021-07-20 07:15 AM

425

cve

CVE-2023-33245

Minecraft through 1.19 and 1.20 pre-releases before 7 (Java) allow arbitrary file overwrite, and possibly code execution, via crafted world data that contains a symlink.

8.8CVSS

8.7AI Score

0.004EPSS

2023-05-30 05:15 AM

516