Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:20 a.m.11 views

CVE-2022-46171

Tauri is a framework for building binaries for all major desktop platforms. The filesystem glob pattern wildcards , ?, and ... match file path literals and leading dots by default, which unintentionally exposes sub folder content of allowed paths. Scopes without the wildcards are not affected. As...

7.7CVSS6.8AI score0.01006EPSS
Exploits1References1
Circl
Circl
added 2022/12/23 4:14 p.m.5 views

CVE-2022-46171

creationtimestamp| type| source ---|---|--- 2022-12-23 16:14:26+00:00| seen| https://t.me/cibsecurity/55242 2025-04-15 03:54:31+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11750...

7.7CVSS7.4AI score0.01006EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/12/23 1:47 p.m.41 views

CVE-2022-46171 Tauri vulnerable to path traversal

Tauri is a framework for building binaries for all major desktop platforms. The filesystem glob pattern wildcards , ?, and ... match file path literals and leading dots by default, which unintentionally exposes sub folder content of allowed paths. Scopes without the wildcards are not affected. As...

6.8CVSS7.8AI score0.01006EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2022/12/23 1:47 p.m.5 views

CVE-2022-46171 Tauri vulnerable to path traversal

Tauri is a framework for building binaries for all major desktop platforms. The filesystem glob pattern wildcards , ?, and ... match file path literals and leading dots by default, which unintentionally exposes sub folder content of allowed paths. Scopes without the wildcards are not affected. As...

6.8CVSS7.1AI score0.01006EPSS
Exploits1References3
CVE
CVE
added 2022/12/23 1:47 p.m.76 views

CVE-2022-46171

The CVE-2022-46171 entry concerns the Tauri framework, where filesystem glob pattern wildcards (*, ?, [...]) by default match file path literals and leading dots, unintentionally exposing subfolder contents within allowed paths. This is a path traversal risk tied to the fs scope behavior, particu...

7.7CVSS7AI score0.01006EPSS
Exploits1References3Affected Software1
vulnersOsv
vulnersOsv
added 2022/12/22 8:3 p.m.7 views

tauri-plugin-fs (>=2.0.0-alpha.0 <=2.0.0-alpha.2) potentially affected by CVE-2022-46171 via tauri (=2.0.0-alpha.15)

tauri CARGO version =2.0.0-alpha.15 is affected by a known vulnerability. The following packages have a transitive dependency on tauri and may be impacted: - tauri-plugin-fs =2.0.0-alpha.0, =2.0.0-alpha.2 Source cves: CVE-2022-46171 Source advisory: OSV:GHSA-6MV3-WM7J-H4W5...

7.7CVSS7.1AI score0.01006EPSS
Exploits1
Rows per page
Query Builder