Lucene search
K

32 matches found

BDU FSTEC
BDU FSTEC
added 2023/01/23 12:0 a.m.6 views

The vulnerability of the Dell GeoDrive local file system’s interface arises due to an incorrect path limitation for the restricted access directory. This allows attackers to gain unauthorized access and perform unauthorized file deletion operations.

The vulnerability of the Dell GeoDrive local file system exists due to an incorrect path name limitation for the restricted access directory. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain unauthorized access to delete files...

7.1CVSS7.1AI score0.00192EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/04/21 12:0 a.m.14 views

The vulnerability of the Cisco IOx software platform arises from an incorrect limitation on the path name to the restricted access directory. This allows a perpetrator to execute arbitrary code or carry out cross-site scripting attacks.

The vulnerability of the Cisco IOx software platform exists due to an incorrect limitation on the path name to the restricted access directory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or perform XSS attacks remotely...

6.8CVSS7AI score0.00607EPSS
Exploits0References3Affected Software2
Microsoft KB
Microsoft KB
added 2021/05/11 7:0 a.m.132 views

Description of the security update for SharePoint Server 2019: May 11, 2021 (KB5001916)

Description of the security update for SharePoint Server 2019: May 11, 2021 KB5001916 Summary This security update resolves a Microsoft SharePoint Server remote code execution vulnerability and a Microsoft SharePoint spoofing vulnerability and information disclosure vulnerability. To learn more...

8.8CVSS7.8AI score0.50628EPSS
Exploits7
CVE
CVE
added 2020/12/15 5:14 p.m.66 views

CVE-2020-29482

CVE-2020-29482 affects Xen up to 4.14.x via oxenstored. A guest can create xenstore paths in its own namespace that exceed the pathname limit, because management tools must use absolute paths and oxenstored enforces a limit on the client-specified path. This can cause some management tools and de...

6CVSS6.8AI score0.00385EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/07/07 12:0 a.m.8 views

The vulnerability in the Adobe Experience Design (Adobe XD) interface development software exists due to an incorrect path name limitation for the restricted access catalog. This allows a malicious actor to execute arbitrary code.

The vulnerability of the Adobe Experience Design Adobe XD interface development software exists due to an incorrect restriction on the path name to the restricted catalog. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code in the context of the current user...

10CVSS8.2AI score0.08262EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/08/13 12:0 a.m.21 views

The vulnerability of the IcedTea-Web plugin, related to an incorrect limitation on the path name to the restricted access catalog, allows a hacker to write arbitrary files to the device’s file system.

The vulnerability of the IcedTea-Web plugin is related to an incorrect limitation on the path name to the restricted directory. Exploiting this vulnerability allows a malicious actor to write arbitrary files to the device’s file system using a specially crafted file in formats: .tar, .jar, .war,...

8.6CVSS5.6AI score0.04022EPSS
Exploits0References6Affected Software5
BDU FSTEC
BDU FSTEC
added 2018/08/03 12:0 a.m.9 views

The vulnerability of the extractDir function in the Zip4j library, which allows a hacker to execute arbitrary code.

The vulnerability of the extractDir function in the Zip4j library, which is used for working with zip files, is related to an incorrect limitation on the path name of the directory. Exploiting this vulnerability could allow a malicious actor, operating remotely, to execute arbitrary code using a...

7.5CVSS8.1AI score0.13088EPSS
Exploits1References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2018/08/03 12:0 a.m.8 views

The vulnerability of the extractDir function in the Node.js library for working with zip files (Adm-zip), which allows a hacker to execute arbitrary code.

The vulnerability of the extractDir function in the Node.js library for working with zip files in the Adm-zip library is related to an incorrect limitation on the path name of the directory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code using a specially...

9.6CVSS8.1AI score0.15359EPSS
Exploits1References9Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/09/08 12:0 a.m.9 views

The vulnerability of the iOS operating system allows a perpetrator to gain access to arbitrary objects in the file system.

The vulnerability of the Air Traffic component in the iOS operating system exists due to an incorrect limitation on the path name to the restricted directory. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to arbitrary objects in the file system...

5CVSS5.5AI score0.02074EPSS
Exploits0References3Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.26 views

Microsoft Windows 2000/NT 4 NTFS File Hiding Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3989/info There exists a condition in Microsoft Windows operating systems using NTFS that may allow for files to be hidden. Though the NTFS filesystem allows for a 32000 character path, Microsoft Windows operating systems...

7.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2011/03/31 3:4 p.m.8 views

quagga: BGP session reset by processing BGP Update message with malformed AS-path attributes

bgpd in Quagga before 0.99.18 allows remote attackers to cause a denial of service session reset via a malformed ASPATHLIMIT path attribute...

5CVSS5.9AI score0.03352EPSS
Exploits1References4
Exploit DB
Exploit DB
added 2002/01/29 12:0 a.m.41 views

Microsoft Windows NT 4.0/2000 - NTFS File Hiding

source: https://www.securityfocus.com/bid/3989/info There exists a condition in Microsoft Windows operating systems using NTFS that may allow for files to be hidden. Though the NTFS filesystem allows for a 32000 character path, Microsoft Windows operating systems NT4, 2000 and XP enforce a 256...

7.4AI score
Exploits0
Rows per page
Query Builder