13 matches found
Fedora: Security Advisory (FEDORA-2025-edd8754757)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2025-8efa183a30)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2025-5566a46596)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 41 : aerc (2025-5566a46596)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-5566a46596 advisory. Fix CVE-2025-49466 fedora2370375 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
Fedora 42 : aerc (2025-8efa183a30)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-8efa183a30 advisory. Fix CVE-2025-49466 fedora2370376 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
SUSE CVE-2025-49466
aerc before 93bec0d allows directory traversal in commands/msgview/open.go because of direct path concatenation of the name of an attachment part,...
CVE-2025-49466
A flaw was found in aerc. The open.go file in the commands/msgview directory improperly concatenates attachment names, leading to a directory traversal vulnerability. This flaw allows a network attacker to specify a crafted attachment name. This issue allows arbitrary file access on the system...
CVE-2025-49466
aerc before 93bec0d allows directory traversal in commands/msgview/open.go because of direct path concatenation of the name of an attachment part,...
CVE-2025-49466
aerc before 93bec0d allows directory traversal in commands/msgview/open.go because of direct path concatenation of the name of an attachment part,...
CVE-2025-49466
aerc before 93bec0d allows directory traversal in commands/msgview/open.go because of direct path concatenation of the name of an attachment part,...
CVE-2025-49466
aerc before 93bec0d allows directory traversal in commands/msgview/open.go because of direct path concatenation of the name of an attachment part,...
CVE-2025-49466
CVE-2025-49466 affects the aerc terminal email client. Connected advisories show that the vulnerability arises in aerc before a specific commit (the description cites directory traversal in commands/msgview/open.go caused by direct path concatenation of an attachment name). This leads to potentia...
CVE-2025-49466
aerc before 93bec0d allows directory traversal in commands/msgview/open.go because of direct path concatenation of the name of an attachment part,...