2 matches found
CVE-2020-26277
creationtimestamp| type| source ---|---|--- 2020-12-22 00:52:22+00:00| seen| https://t.me/cibsecurity/21149...
CVE-2020-26277
DBdeployer (dbdeployer) prior to v1.58.2 is vulnerable to a symbolic-link path traversal during tarball unpacking, allowing an attacker with a malicious tarball to cause writes to files outside the target directory (potentially system files). This requires: the user running as root (dbdeployer ca...