6 matches found
CVE-2022-46171
Tauri is a framework for building binaries for all major desktop platforms. The filesystem glob pattern wildcards , ?, and ... match file path literals and leading dots by default, which unintentionally exposes sub folder content of allowed paths. Scopes without the wildcards are not affected. As...
CVE-2022-46171
creationtimestamp| type| source ---|---|--- 2022-12-23 16:14:26+00:00| seen| https://t.me/cibsecurity/55242 2025-04-15 03:54:31+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11750...
CVE-2022-46171 Tauri vulnerable to path traversal
Tauri is a framework for building binaries for all major desktop platforms. The filesystem glob pattern wildcards , ?, and ... match file path literals and leading dots by default, which unintentionally exposes sub folder content of allowed paths. Scopes without the wildcards are not affected. As...
CVE-2022-46171 Tauri vulnerable to path traversal
Tauri is a framework for building binaries for all major desktop platforms. The filesystem glob pattern wildcards , ?, and ... match file path literals and leading dots by default, which unintentionally exposes sub folder content of allowed paths. Scopes without the wildcards are not affected. As...
CVE-2022-46171
The CVE-2022-46171 entry concerns the Tauri framework, where filesystem glob pattern wildcards (*, ?, [...]) by default match file path literals and leading dots, unintentionally exposing subfolder contents within allowed paths. This is a path traversal risk tied to the fs scope behavior, particu...
tauri-plugin-fs (>=2.0.0-alpha.0 <=2.0.0-alpha.2) potentially affected by CVE-2022-46171 via tauri (=2.0.0-alpha.15)
tauri CARGO version =2.0.0-alpha.15 is affected by a known vulnerability. The following packages have a transitive dependency on tauri and may be impacted: - tauri-plugin-fs =2.0.0-alpha.0, =2.0.0-alpha.2 Source cves: CVE-2022-46171 Source advisory: OSV:GHSA-6MV3-WM7J-H4W5...