Lucene search
K

1649 matches found

RedhatCVE
RedhatCVE
added 2023/09/12 7:54 p.m.46 views

CVE-2023-4759

Arbitrary File Overwrite in Eclipse JGit = 6.6.0 In Eclipse JGit, all versions = 6.6.0.202305301015-r, a symbolic link present in a specially crafted git repository can be used to write a file to locations outside the working tree when this repository is cloned with JGit to a case-insensitive...

8.8CVSS8.8AI score0.01884EPSS
Exploits0References3
NVD
NVD
added 2023/09/12 10:15 a.m.24 views

CVE-2023-4759

Arbitrary File Overwrite in Eclipse JGit = 6.6.0 In Eclipse JGit, all versions = 6.6.0.202305301015-r, a symbolic link present in a specially crafted git repository can be used to write a file to locations outside the working tree when this repository is cloned with JGit to a case-insensitive...

8.8CVSS8.8AI score0.01884EPSS
Exploits0References3
OSV
OSV
added 2023/09/12 10:15 a.m.13 views

CVE-2023-4759

Arbitrary File Overwrite in Eclipse JGit = 6.6.0 In Eclipse JGit, all versions = 6.6.0.202305301015-r, a symbolic link present in a specially crafted git repository can be used to write a file to locations outside the working tree when this repository is cloned with JGit to a case-insensitive...

8.8CVSS8.8AI score
Exploits0References3
Prion
Prion
added 2023/09/12 10:15 a.m.43 views

Design/Logic Flaw

Arbitrary File Overwrite in Eclipse JGit = 6.6.0 In Eclipse JGit, all versions = 6.6.0.202305301015-r, a symbolic link present in a specially crafted git repository can be used to write a file to locations outside the working tree when this repository is cloned with JGit to a case-insensitive...

6.5CVSS8.7AI score0.01884EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2023/09/12 10:15 a.m.27 views

CVE-2023-4759

Arbitrary File Overwrite in Eclipse JGit = 6.6.0 In Eclipse JGit, all versions = 6.6.0.202305301015-r, a symbolic link present in a specially crafted git repository can be used to write a file to locations outside the working tree when this repository is cloned with JGit to a case-insensitive...

8.8CVSS7.3AI score0.01884EPSS
Exploits0References5
Cvelist
Cvelist
added 2023/09/12 9:12 a.m.31 views

CVE-2023-4759 Improper handling of case insensitive filesystems in Eclipse JGit allows arbitrary file write

Arbitrary File Overwrite in Eclipse JGit = 6.6.0 In Eclipse JGit, all versions = 6.6.0.202305301015-r, a symbolic link present in a specially crafted git repository can be used to write a file to locations outside the working tree when this repository is cloned with JGit to a case-insensitive...

8.8CVSS9AI score0.01884EPSS
Exploits0References3
CVE
CVE
added 2023/09/12 9:12 a.m.199 views

CVE-2023-4759

CVE-2023-4759 (Eclipse JGit) affects all versions

8.8CVSS7.8AI score0.01884EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2023/09/12 9:12 a.m.92 views

CVE-2023-4759

Arbitrary File Overwrite in Eclipse JGit = 6.6.0 In Eclipse JGit, all versions = 6.6.0.202305301015-r, a symbolic link present in a specially crafted git repository can be used to write a file to locations outside the working tree when this repository is cloned with JGit to a case-insensitive...

8.8CVSS8.4AI score0.01884EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2023/09/07 12:0 a.m.6 views

PT-2023-9283 · Check Point · Check Point Zonealarm Extreme Security

Name of the Vulnerable Software and Affected Versions: Check Point ZoneAlarm Extreme Security affected versions not specified Description: This issue allows local attackers to escalate privileges on affected installations. The flaw exists within the Forensic Recorder service, where an attacker ca...

7.8CVSS7.4AI score0.00398EPSS
Exploits0References8
NVD
NVD
added 2023/09/05 5:15 p.m.9 views

CVE-2023-32615

A file write vulnerability exists in the OAS Engine configuration functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted series of network requests can lead to arbitrary file creation or overwrite. An attacker can send a sequence of requests to trigger this...

8.1CVSS6.9AI score0.00727EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/08/30 12:0 a.m.3 views

The vulnerability of the file transfer protocol implementation of the Cisco NX-OS operating system for Cisco Nexus series 3000 and 9000 switches allows a perpetrator to upload or overwrite arbitrary files.

The vulnerability of the file transfer protocol implementation of the Cisco NX-OS operating system for Cisco Nexus series 3000 and 9000 switches is related to errors in processing input data. Exploiting this vulnerability allows a malicious actor to upload or re-write any files as desired...

5.5CVSS5.8AI score0.00439EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/08/16 12:0 a.m.3 views

PT-2023-4432 · Cisco · Cisco Duo Device Health Application

Name of the Vulnerable Software and Affected Versions: Cisco Duo Device Health Application for Windows affected versions not specified Description: A vulnerability in the CryptoService function could allow an authenticated, local attacker with low privileges to conduct directory traversal attacks...

7.1CVSS6.8AI score0.00385EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2023/08/15 6:47 p.m.13 views

CVE-2023-38402 Arbitrary File Overwrite in HPE Aruba Networking Virtual Intranet Access (VIA) Microsoft Windows Client

A vulnerability in the HPE Aruba Networking Virtual Intranet Access VIA client could allow malicious users to overwrite arbitrary files as NT AUTHORITY\SYSTEM. A successful exploit could allow these malicious users to create a Denial-of-Service DoS condition affecting the Microsoft Windows...

7.1CVSS6.8AI score0.00197EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/08/15 12:0 a.m.2 views

HPE Aruba Networking Virtual Intranet Access 安全漏洞

Hewlett Packard Enterprise Aruba Networking Virtual Intranetxa0Access is part of a remote networking solution for remote workers and mobile users from Hewlett Packard Enterprise USA. A security vulnerability exists in HPE Aruba Networking Virtual Intranet Access, which stems from a vulnerability...

7.1CVSS7.2AI score0.00197EPSS
Exploits0References2
OSV
OSV
added 2023/08/04 6:15 p.m.5 views

CVE-2023-39107

An arbitrary file overwrite vulnerability in NoMachine Free Edition and Enterprise Client for macOS before v8.8.1 allows attackers to overwrite root-owned files by using hardlinks...

9.1CVSS5.9AI score0.00987EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/08/04 12:0 a.m.14 views

CVE-2023-39107

An arbitrary file overwrite vulnerability in NoMachine Free Edition and Enterprise Client for macOS before v8.8.1 allows attackers to overwrite root-owned files by using hardlinks...

6.9AI score0.00987EPSS
Exploits1References3
Broadcom
Broadcom
added 2023/08/01 12:0 a.m.23 views

CVE-2023-31926 - Arbitrary File Overwrite using less command

System files could be overwritten using the less command in Brocade Fabric OS before Brocade Fabric OS v9.1.1c and v9.2.0...

7.1CVSS7.1AI score0.00148EPSS
Exploits0Affected Software1
SUSE CVE
SUSE CVE
added 2023/07/01 1:27 a.m.1 views

SUSE CVE-2023-33466

Orthanc before 1.12.0 allows authenticated users with access to the Orthanc API to overwrite arbitrary files on the file system, and in specific deployment scenarios allows the attacker to overwrite the configuration, which can be exploited to trigger Remote Code Execution RCE...

8.8CVSS7.4AI score0.0415EPSS
Exploits0References3
OSV
OSV
added 2023/06/06 12:15 a.m.4 views

CVE-2023-32540

In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file overwrite vulnerability, which could allow an attacker to overwrite any file in the operating system including system files, inject code into an XLS file, and modify the file extension, which could lead to arbitrary code...

9.8CVSS5.9AI score0.00898EPSS
Exploits0References1
NVD
NVD
added 2023/06/06 12:15 a.m.7 views

CVE-2023-32540

In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file overwrite vulnerability, which could allow an attacker to overwrite any file in the operating system including system files, inject code into an XLS file, and modify the file extension, which could lead to arbitrary code...

9.8CVSS8.5AI score0.00898EPSS
Exploits0References1
Rows per page
Query Builder