CVE-2021-1256

A vulnerability in the CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to overwrite files on the file system of an affected device by using directory traversal techniques. A successful exploit could cause system instability if important system files...

CVE-2021-1256

Cisco Firepower Threat Defense (FTD) Software CLI is affected by a local authenticated directory-traversal vulnerability that allows overwriting arbitrary files on the device’s filesystem due to insufficient path validation in a specific CLI command. This can cause system instability and may impa...

CVE-2020-4981

IBM Spectrum Scale 5.0.4.1 through 5.1.0.3 could allow a local privileged user to overwrite files due to improper input validation. IBM X-Force ID: 192541...

CVE-2020-4981

IBM Spectrum Scale 5.0.4.1 through 5.1.0.3 could allow a local privileged user to overwrite files due to improper input validation. IBM X-Force ID: 192541...

CVE-2020-4981

IBM Spectrum Scale 5.0.4.1 through 5.1.0.3 could allow a local privileged user to overwrite files due to improper input validation. IBM X-Force ID: 192541...

CVE-2021-30356

A denial of service vulnerability was reported in Check Point Identity Agent before R81.018.0000, which could allow low privileged users to overwrite protected system files...

Check Point Response to CVE-2021-30356 - denial-of-service vulnerability in Identity Agent

Cause A denial-of-service vulnerability was reported in Check Point Identity Agent before R81.018.0000, which could allow low privileged users to overwrite protected system files. This issue was published as CVE-2021-30356. The write-up for the vulnerability is available at:...

Directory traversal

Directory traversal vulnerability in Archive collectively operation utility Ver.2.10.1.0 and earlier allows an attacker to create or overwrite files by leading a user to expand a malicious ZIP archives...

USN-4902-1 python-django vulnerability

Dennis Brinkrolf discovered that Django incorrectly handled certain filenames. A remote attacker could possibly use this issue to create or overwrite files in unexpected directories...

CVE-2021-20671

Invalid file validation on the upload feature in GROWI versions v4.2.2 allows a remote attacker with administrative privilege to overwrite the files on the server, which may lead to arbitrary code execution...

Weseek GROWI 输入验证错误漏洞

GROWI is a team collaboration software. An input validation error vulnerability exists in WESEEK GROWI 4.2.2 and earlier versions, which can be exploited by remote attackers to overwrite files on the server with arbitrary code execution...

Path Traversal Vulnerability in Multiple Cisco Products

The Cisco RV160, among others, is a router from the U.S. company Cisco that is used in enterprise environments. A path traversal vulnerability exists in the Cisco Small Business RV160, RV160W, RV260, RV260P, and RV260W VPNs that could be exploited by an unauthenticated, remote attacker to conduct...

The vulnerability of the nsm DropPrivileges function (from the support/nsm.File.c module in the NFS utilities nfs-utils package) arises from improper assignment of standard privileges. This allows attackers to gain access to confidential data and compromise its integrity.

The vulnerability of the nsm DropPrivileges function from the NFS utility package nfs-utils, file.c section is related to the improper assignment of standard privileges. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to confidential data, compromise its...

Gotenberg Directory Traversal Vulnerability

Gotenberg is a Docker-powered stateless API for converting HTML, Markdown and Office documents to PDF. A directory traversal vulnerability exists in the file upload functionality of Gotenberg 6.2.1 and earlier. An attacker could use this vulnerability to upload and overwrite arbitrary writable...

Directory traversal

A directory traversal vulnerability in file upload function of Gotenberg through 6.2.1 allows an attacker to upload and overwrite any writable files outside the intended folder. This can lead to DoS, a change to program behavior, or code execution...

[SECURITY] [DSA 4817-1] php-pear security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4817-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 19, 2020 https://www.debian.org/security/faq -...

Directory Traversal

FlightGear is vulnerable to directory traversal. An attacker is able to overwrite arbitrary files through the directory traversal vulnerability...

Arbitrary File Write

LPRng is vulnerable to arbitrary file write. A local unauthenticated attacker could overwrite arbitrary files via a symbolic link attack on the /tmp/before file of the psbanner component...

CVE-2017-15681

In Crafter CMS Crafter Studio 3.0.1 a directory traversal vulnerability exists which allows unauthenticated attackers to overwrite files from the operating system which can lead to RCE...

CVE-2017-15681

In Crafter CMS Crafter Studio 3.0.1 a directory traversal vulnerability exists which allows unauthenticated attackers to overwrite files from the operating system which can lead to RCE...