10 matches found
CVE-2019-17400
creationtimestamp| type| source ---|---|--- 2024-01-17 13:41:09+00:00| seen| https://t.me/ctinow/169279...
Oracle Linux 7 : unoconv (ELSA-2020-3944)
The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2020-3944 advisory. 0.6-8 - Resolves: rhbz1803831 CVE-2019-17400 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...
NewStart CGSL CORE 5.05 / MAIN 5.05 : unoconv Vulnerability (NS-SA-2021-0170)
The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has unoconv packages installed that are affected by a vulnerability: - The unoconv package before 0.9 mishandles untrusted pathnames, leading to SSRF and local file inclusion. CVE-2019-17400 Note that Nessus has not tested for...
NewStart CGSL CORE 5.04 / MAIN 5.04 : unoconv Vulnerability (NS-SA-2021-0043)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has unoconv packages installed that are affected by a vulnerability: - The unoconv package before 0.9 mishandles untrusted pathnames, leading to SSRF and local file inclusion. CVE-2019-17400 Note that Nessus has not tested for...
CentOS 7 : unoconv (RHSA-2020:3944)
The remote CentOS Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:3944 advisory. - The unoconv package before 0.9 mishandles untrusted pathnames, leading to SSRF and local file inclusion. CVE-2019-17400 Note that Nessus has not tested for th...
unoconv security update
0.6-8 - Resolves: rhbz1803831 CVE-2019-17400...
RHEL 7 : unoconv (RHSA-2020:3944)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:3944 advisory. Universal Office Converter unoconv is a command line tool to convert any document format that LibreOffice can import to any document format that...
Moderate: Red Hat Security Advisory: unoconv security update
An update for unoconv is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
CVE-2019-17400
The unoconv package before 0.9 mishandles untrusted pathnames, leading to SSRF and local file inclusion...
Slack: SSRF via Office file thumbnails
On August 12, 2019, a group of researchers reported an exploit path for a vulnerability in LibreOffice. Slack uses LibreOffice to process certain file types for preview. A specially crafted file uploaded to Slack could permit local file access and expose an internal Slack AWS credential for the...