Lucene search
K

1647 matches found

Prion
Prion
added 2019/08/02 2:15 p.m.17 views

Design/Logic Flaw

cPanel before 67.9999.103 allows arbitrary file-overwrite operations during a Roundcube SQLite schema update SEC-303...

3.6CVSS5.6AI score0.00297EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2019/08/01 4:15 p.m.3 views

CVE-2016-10848

cPanel before 11.54.0.4 allows arbitrary file-overwrite operations in scripts/quotacheck SEC-81...

7.2CVSS5.9AI score
Exploits0References2
Prion
Prion
added 2019/08/01 4:15 p.m.12 views

Design/Logic Flaw

cPanel before 11.54.0.4 allows arbitrary file-overwrite operations in scripts/checksystemstorable SEC-78...

6.5CVSS7.2AI score0.01118EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/08/01 3:39 p.m.16 views

CVE-2016-10845

cPanel before 11.54.0.4 allows arbitrary file-overwrite operations in scripts/checksystemstorable SEC-78...

8.1AI score0.01118EPSS
Exploits0References1
CVE
CVE
added 2019/08/01 3:39 p.m.43 views

CVE-2016-10845

CVE-2016-10845 affects cPanel prior to 11.54.0.4. The issue is an arbitrary file-overwrite in scripts/check_system_storable (SEC-78) due to improper input handling/validation. Impact is partial confidentiality, integrity, and availability per CVSS2/3 data; exploitation details are not provided in...

8.1CVSS8AI score0.01118EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/08/01 3:26 p.m.38 views

CVE-2016-10848

CVE-2016-10848 affects cPanel prior to 11.54.0.4, allowing arbitrary file-overwrite operations in scripts/quotacheck (SEC-81). The issue is documented across multiple sources (NVD, Red Hat advisory) with a high impact rating (C/V: high; A: high) and network attack vector. The provided materials d...

9CVSS7AI score0.01448EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/08/01 3:26 p.m.28 views

CVE-2016-10848

cPanel before 11.54.0.4 allows arbitrary file-overwrite operations in scripts/quotacheck SEC-81...

7.1AI score0.01448EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2019/07/31 7:26 p.m.4 views

icedtea-web: directory traversal in the nested jar auto-extraction leading to arbitrary file overwrite

It was found that icedtea-web was vulnerable to a zip-slip attack during auto-extraction of a JAR file. An attacker could use this flaw to write files to arbitrary locations. This could also be used to replace the main running application and, possibly, break out of the sandbox...

8.6CVSS5.8AI score0.04022EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/07/22 1:39 p.m.5 views

nodejs-tar: Arbitrary file overwrites when extracting tarballs containing a hard-link

A flaw was found in nodejs-tar in versions prior to 4.4.2. An arbitrary file overwrite can occur when extracting tarballs containing a hard-link to a file that already exists in the system. Further, a file that matches the hard-link may overwrite the system's files with the contents of the...

7.5CVSS7.2AI score0.03145EPSS
Exploits1References5
CNVD
CNVD
added 2019/07/12 12:0 a.m.2 views

Private Internet Access (PIA) VPN Client Arbitrary File Overwrite Vulnerability

Private Internet Access PIA is a commercial VPN service operated by London Trust Media. An arbitrary file overwrite vulnerability exists in the London Trust Media Private Internet Access PIA VPN client version 82 for Linux and macOS. An attacker can exploit this vulnerability to overwrite any fil...

7.1CVSS6.8AI score0.00582EPSS
Exploits1References1
CNVD
CNVD
added 2019/07/12 12:0 a.m.1 views

Private Internet Access (PIA) VPN Client Arbitrary File Overwrite Vulnerability (CNVD-2019-24220)

Private Internet Access PIA is a commercial VPN service operated by London Trust Media. An arbitrary file overwrite vulnerability exists in the London Trust Media Private Internet Access PIA VPN client 0.9.8 beta build 02099 for macOS. An attacker can exploit this vulnerability to cause a denial ...

7.1CVSS6.9AI score0.00643EPSS
Exploits1References1
OSV
OSV
added 2019/07/11 8:15 p.m.3 views

CVE-2019-12573

A vulnerability in the London Trust Media Private Internet Access PIA VPN Client v82 for Linux and macOS could allow an authenticated, local attacker to overwrite arbitrary files. The openvpnlauncher binary is setuid root. This binary supports the --log option, which accepts a path as an argument...

7.1CVSS7.2AI score0.00582EPSS
Exploits1References1
NVD
NVD
added 2019/07/02 8:15 p.m.23 views

CVE-2019-13173

fstream before 1.0.12 is vulnerable to Arbitrary File Overwrite. Extracting tarballs containing a hardlink to a file that already exists in the system, and a file that matches the hardlink, will overwrite the system's file with the contents of the extracted file. The fstream.DirWriter function is...

7.5CVSS7.3AI score0.02781EPSS
Exploits0References5
OSV
OSV
added 2019/07/02 8:15 p.m.1 views

DEBIAN-CVE-2019-13173

fstream before 1.0.12 is vulnerable to Arbitrary File Overwrite. Extracting tarballs containing a hardlink to a file that already exists in the system, and a file that matches the hardlink, will overwrite the system's file with the contents of the extracted file. The fstream.DirWriter function is...

7.5CVSS8.3AI score0.02781EPSS
Exploits0References1
OSV
OSV
added 2019/07/02 8:15 p.m.20 views

CVE-2019-13173

fstream before 1.0.12 is vulnerable to Arbitrary File Overwrite. Extracting tarballs containing a hardlink to a file that already exists in the system, and a file that matches the hardlink, will overwrite the system's file with the contents of the extracted file. The fstream.DirWriter function is...

7.5CVSS6.4AI score
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2019/07/02 8:15 p.m.2 views

CVE-2019-13173

fstream before 1.0.12 is vulnerable to Arbitrary File Overwrite. Extracting tarballs containing a hardlink to a file that already exists in the system, and a file that matches the hardlink, will overwrite the system's file with the contents of the extracted file. The fstream.DirWriter function is...

7.5CVSS5.5AI score0.02781EPSS
Exploits0References7
Prion
Prion
added 2019/07/02 8:15 p.m.11 views

Design/Logic Flaw

fstream before 1.0.12 is vulnerable to Arbitrary File Overwrite. Extracting tarballs containing a hardlink to a file that already exists in the system, and a file that matches the hardlink, will overwrite the system's file with the contents of the extracted file. The fstream.DirWriter function is...

6.4CVSS7.3AI score0.02781EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2019/07/02 7:26 p.m.28 views

CVE-2019-13173

fstream before 1.0.12 is vulnerable to Arbitrary File Overwrite. Extracting tarballs containing a hardlink to a file that already exists in the system, and a file that matches the hardlink, will overwrite the system's file with the contents of the extracted file. The fstream.DirWriter function is...

7.3AI score0.02781EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2019/07/02 7:26 p.m.12 views

CVE-2019-13173

fstream before 1.0.12 is vulnerable to Arbitrary File Overwrite. Extracting tarballs containing a hardlink to a file that already exists in the system, and a file that matches the hardlink, will overwrite the system's file with the contents of the extracted file. The fstream.DirWriter function is...

7.5CVSS7.5AI score0.02781EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2019/07/02 12:0 a.m.17 views

CVE-2019-13173

fstream before 1.0.12 is vulnerable to Arbitrary File Overwrite. Extracting tarballs containing a hardlink to a file that already exists in the system, and a file that matches the hardlink, will overwrite the system's file with the contents of the extracted file. The fstream.DirWriter function is...

7.5CVSS7.1AI score0.02781EPSS
Exploits0References5
Rows per page
Query Builder