18 matches found
apko dirFS has a symlink-following path traversal that allows multiple entry points to escape the build root
Impact A crafted .apk could install a TypeSymlink tar entry whose target pointed outside the build root, and a subsequent directory-creation or file-write entry in the same or later archive could traverse that symlink to reach host paths the build user could write to. The root cause was the...
PT-2026-25321
Uncontrolled Resource Consumption vulnerability in hexpm hexpm/hexpm allows Excessive Allocation. Publishing an oversized package can cause Hex.pm to run out of memory while extracting the uploaded package tarball. This can terminate the affected application instance and result in a denial of...
Dart 路径遍历漏洞
Dart is an open-source programming language developed by Dartmouth. Dart has a path traversal vulnerability. This vulnerability arises when the pub client extracts packages, and files from malicious package archives may be extracted to locations outside of the PUBCACHE target directory, potential...
BIT-JOOMLA-2022-23793 [20220301] - Core - Zip Slip within the Tar extractor
An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Extracting an specifilcy crafted tar package could write files outside of the intended path...
BIT-JOOMLA-2021-26028 [20210308] - Core - Path Traversal within joomla/archive zip class
An issue was discovered in Joomla! 3.0.0 through 3.9.24. Extracting an specifilcy crafted zip package could write files outside of the intended path...
The vulnerability of the snapd package management tool, related to improper validation of input data, allows a malicious actor to trigger a service failure.
The vulnerability of the snapd package management tool is related to improper file type checking during the extraction of snap packages. Exploiting this vulnerability can allow an attacker to cause service failures...
OESA-2024-1811 rust security update
Rust is a systems programming language focused on three goals:safety, speed,and concurrency.It maintains these goals without having a garbage collector, making it a useful language for a number of use cases other languages are not good at: embedding in other languages, programs with specific spac...
GitLab Code Injection Vulnerability
GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD continuous integration and continuous delivery, and other features. GitLab suffers from a code injection vulnerability that stems from the fact th...
The vulnerability of the web interface of the Cisco Intersight Virtual Appliance, a software tool for managing cloud systems, allows a perpetrator to execute arbitrary commands.
The vulnerability of the web interface for managing Cisco Intersight Virtual Appliance software lies in insufficient validation of input data during the extraction of loaded software packages. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
The vulnerability of the web interface of the Cisco Intersight Virtual Appliance, a software tool for managing cloud systems, allows a perpetrator to execute arbitrary commands.
The vulnerability of the web interface for managing Cisco Intersight Virtual Appliance software lies in insufficient validation of input data during the extraction of loaded software packages. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
DEBIAN-CVE-2022-36113
Cargo is a package manager for the rust programming language. After a package is downloaded, Cargo extracts its source code in the /.cargo folder on disk, making it available to the Rust projects it builds. To record when an extraction is successful, Cargo writes "ok" to the .cargo-ok file at the...
UBUNTU-CVE-2022-36113
Cargo is a package manager for the rust programming language. After a package is downloaded, Cargo extracts its source code in the /.cargo folder on disk, making it available to the Rust projects it builds. To record when an extraction is successful, Cargo writes "ok" to the .cargo-ok file at the...
CVE-2022-1664
Dpkg::Source::Archive in dpkg, the Debian package management system, before version 1.21.8, 1.20.10, 1.19.8, 1.18.26 is prone to a directory traversal vulnerability. When extracting untrusted source packages in v2 and v3 source package formats that include a debian.tar, the in-place extraction ca...
Citrix Hypervisor Open Source Licensing and Attribution
The Citrix Hypervisor product is a compilation of software packages. Each package is governed by its own license. The complete licensing terms applicable to a given package can be found in the source RPM of the package, unless the package is covered by a proprietary license which does not permit...
Internet Bug Bounty: [bower] Arbitrary File Write through improper validation of symlinks while package extraction
Hi, I want to submit my report https://hackerone.com/reports/473811 for the Internet Bug Bounty. Snyk's writeup: https://snyk.io/blog/severe-security-vulnerability-in-bowers-zip-archive-extraction My assessment on why this report might be eligible: To qualify, vulnerabilities must meet the...
CVE-2017-14804
The build package before 20171128 did not check directory names during extraction of build results that allowed untrusted builds to write outside of the target system,allowing escape out of buildroots...
NVIDIA Windows GPU Display Driver 375.x < 376.67 / 378.x < 378.52 Multiple Vulnerabilities
The version of the NVIDIA GPU display driver installed on the remote Windows host is 375.x prior to 376.67 or 378.x prior to 378.52. It is, therefore, affected by multiple vulnerabilities : - Multiple overflow conditions exist in the kernel mode layer handler nvlddmkm.sys for DxgkDdiEscape due to...
CVE-2017-0317
CVE-2017-0317 concerns the NVIDIA GPU and GeForce Experience installer on Windows. The vulnerability arises from improper permissions on the package extraction path, which could allow a non-privileged user to tamper with extracted files and potentially escalate to code execution. The connected Ne...