PT-2024-1682 · Vmware · Vmware Aria Operations For Networks

Name of the Vulnerable Software and Affected Versions: VMware Aria Operations for Networks affected versions not specified Description: The issue is related to a local file read vulnerability in VMware Aria Operations for Networks. This vulnerability can be exploited by a malicious actor with adm...

The vulnerability of Honeywell PM43 industrial printer’s microprogramming software lies in the use of files and directories accessible from external parties, which allows attackers to escalate their privileges.

The vulnerability of Honeywell PM43 industrial printer’s microprogramming software is related to the use of files and directories accessible from external parties. Exploiting this vulnerability can allow attackers to enhance their privileges...

PT-2023-29482 · Yamcs · Yamcs

Name of the Vulnerable Software and Affected Versions: Yamcs version 5.8.6 Description: The issue allows for Cross-Site Scripting XSS attacks. It comes with a Bucket as its primary storage mechanism, which allows for the upload of any file. There's a way to upload a display referencing a maliciou...

Theft of Arbitrary Files due to lack of intent validation and insecure usage of provider paths in TTFViewerActivity.kt

Description Through the use of Oversecured, leading vulnerability scanner for Android and iOS applications, we were able to detect an Theft of Arbitrary Files vulnerability within TTFViewerActivity.kt. Check full issue definition in the image below: Root Cause Analysis The TTFViewerActivity faile...

PT-2023-8730 · Apache · Apache Inlong

Name of the Vulnerable Software and Affected Versions: Apache InLong versions 1.4.0 through 1.6.0 Description: The issue is related to the use of files and directories accessible to external parties, which can be exploited by a remote attacker to execute arbitrary code. Different users in InLong...

CVE-2020-17354

LilyPond before 2.24 allows attackers to bypass the -dsafe protection mechanism via output-def-lookup or output-def-scope, as demonstrated by dangerous Scheme code in a .ly file that causes arbitrary code execution during conversion to a different file format. NOTE: in 2.24 and later versions, sa...

PT-2023-1541 · Delta Electronics · Dopsoft

Name of the Vulnerable Software and Affected Versions: Delta Electronics DOPSoft versions 4.00.16.22 and prior Description: The issue is related to an out-of-bounds write in the DOPSoft software, which could allow an attacker to remotely execute arbitrary code when a malformed file is introduced ...

youngerheart nodeserver 路径遍历漏洞

nodeserver is a router that implements domain name resolution and web applications for node servers by the individual developer of youngerheart. A path traversal vulnerability exists in youngerheart nodeserver. An attacker could use this vulnerability to access files and directories stored outsid...

The vulnerability of the application for automatic capture, processing, management, and distribution of Opencast videos, related to the use of files and directories accessible to external parties, allows a violator to gain unauthorized access to protected information.

The vulnerability of the application for automatic capture, processing, management, and distribution of Opencast videos involves the use of files and directories accessible to external parties. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized...

GHSA-QXP6-27GW-99CJ Time-of-check Time-of-use (TOCTOU) Race Condition in Jenkins

Due to a time-of-check to time-of-use TOCTOU race condition, the file browser for workspaces, archived artifacts, and $JENKINSHOME/userContent/ follows symbolic links to locations outside the directory being browsed in Jenkins 2.275 and LTS 2.263.2. This allows attackers with Job/Workspace...

Huawei ManageOne Elevation of Privilege Vulnerability

Huawei Manageone is a cloud data center management solution from Huawei of China. huawei ManageOne is vulnerable due to a lack of checksum when the program uses certain parameters from external files. An attacker could use the vulnerability to construct a malicious file to achieve elevation of...

FlowDroid 代码问题漏洞

FlowDroid is a software application. A data flow analysis tool. A security vulnerability exists in FlowDroid versions prior to 2.9.0 that allows an attacker controlling a source/receiver definition file in XML format to read the file from an external location...

CVE-2020-24143

Directory traversal in the Video Downloader for TikTok aka downloader-tiktok plugin 1.3 for WordPress lets an attacker get access to files that are stored outside the web root folder via the njt-tk-download-video parameter...

The vulnerability of the Cisco IOS XE SD-WAN software’s command-line interface allows attackers to compromise the integrity of protected information.

The vulnerability of the Cisco IOS XE SD-WAN software’s command-line interface relates to the use of files and directories accessible from external parties. Exploiting this vulnerability could allow a attacker to compromise the integrity of the protected information...

CVE-2020-24985

An issue was discovered in Quadbase EspressReports ES 7 Update 9. An authenticated user is able to navigate to the MenuPage section of the application, and change the frmsrc parameter value to retrieve and execute external files or payloads...

CVE-2020-24985

An issue was discovered in Quadbase EspressReports ES 7 Update 9. An authenticated user is able to navigate to the MenuPage section of the application, and change the frmsrc parameter value to retrieve and execute external files or payloads...

Design/Logic Flaw

An issue was discovered in Quadbase EspressReports ES 7 Update 9. An authenticated user is able to navigate to the MenuPage section of the application, and change the frmsrc parameter value to retrieve and execute external files or payloads...

CVE-2020-24985

An issue was discovered in Quadbase EspressReports ES 7 Update 9. An authenticated user is able to navigate to the MenuPage section of the application, and change the frmsrc parameter value to retrieve and execute external files or payloads...

Design/Logic Flaw

In checkUriPermission and related functions of MediaProvider.java, there is a possible way to access external files due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product...

CVE-2020-27603

BigBlueButton before 2.2.27 has an unsafe JODConverter setting in which LibreOffice document conversions can access external files...