CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-32825

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00652EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-48983

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00053EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 10:41 p.m.•3 views

CVE-2022-28380

The rc-httpd component through 2022-03-31 for 9front Plan 9 fork allows ..%2f directory traversal if serve-static is used...

7.5CVSS7AI score0.00652EPSS

Exploits0References1

NVD•added 2024/08/25 10:15 p.m.•21 views

CVE-2024-8158

A bug in the 9p authentication implementation within lib9p allows an attacker with an existing valid user within the configured auth server to impersonate any other valid filesystem user. This is due to lib9p not properly verifying that the uname given in the Tauth and Tattach 9p messages matches...

8.8CVSS0.00053EPSS

Exploits0References1

CVE•added 2024/08/25 9:31 p.m.•47 views

CVE-2024-8158

CVE-2024-8158 involves a bug in the lib9p 9p authentication implementation that can allow an attacker with a valid user to impersonate another filesystem user. The issue stems from lib9p not consistently verifying that the uname in Tauth/Tattach messages matches the client UID returned by the fac...

8.8CVSS6.6AI score0.00053EPSS

Exploits0References1Affected Software1

Cvelist•added 2024/08/25 9:31 p.m.•18 views

CVE-2024-8158 User impersonation for lib9p based 9p fileservers

8.8CVSS0.00053EPSS

Exploits0References1

Vulnrichment•added 2024/08/25 9:31 p.m.•16 views

CVE-2024-8158 User impersonation for lib9p based 9p fileservers

8.8CVSS7AI score0.00053EPSS

Exploits0References1

Positive Technologies•added 2024/08/25 12:0 a.m.•2 views

PT-2024-38844 · Gefs +4 · Gefs +4

Name of the Vulnerable Software and Affected Versions: 9front versions prior to commit 9645ae07eb66a59015e3e118d0024790c37400da Description: A bug in the 9p authentication implementation within lib9p allows an attacker with an existing valid user within the configured auth server to impersonate a...

8.8CVSS7.3AI score0.00053EPSS

Exploits0References8

NVD•added 2022/04/03 6:15 p.m.•11 views

CVE-2022-28380

The rc-httpd component through 2022-03-31 for 9front Plan 9 fork allows ..%2f directory traversal if serve-static is used...

7.5CVSS0.00652EPSS

Exploits0References2

Prion•added 2022/04/03 6:15 p.m.•13 views

Directory traversal

The rc-httpd component through 2022-03-31 for 9front Plan 9 fork allows ..%2f directory traversal if serve-static is used...

5CVSS7.6AI score0.00652EPSS

Exploits0References2Affected Software1

CVE•added 2022/04/03 5:55 p.m.•81 views

CVE-2022-28380

CVE-2022-28380 affects the rc-httpd component in plan9front (9front fork) up to 2022-03-31. The issue enables directory traversal via a crafted path containing ..%2f when serve-static is used, exposing potential access to restricted files. The connected sources confirm the vulnerable component an...

7.5CVSS7.6AI score0.00652EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by