Lucene search
K

412 matches found

Cvelist
Cvelist
added 2025/08/05 12:8 a.m.10 views

CVE-2025-54794 Claude Code Research Preview has a Path Restriction Bypass which could allow unauthorized file access

Claude Code is an agentic coding tool. In versions below 0.2.111, a path validation flaw using prefix matching instead of canonical path comparison, makes it possible to bypass directory restrictions and access files outside the CWD. Successful exploitation depends on the presence of or ability t...

7.7CVSS0.00875EPSS
Exploits0References1
CVE
CVE
added 2025/08/05 12:8 a.m.47 views

CVE-2025-54794

CVE-2025-54794 – Claude Code path validation bypass : Claude Code versions older than 0.2.111 expose a directory-restriction bypass due to a path validation flaw that uses prefix matching instead of canonical path comparison. Exploitation requires either a pre-existing or creatable directory shar...

9.1CVSS6.4AI score0.00875EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/08/04 3:15 p.m.6 views

GHSA-PMW4-PWVC-3HX2 Claude Code Research Preview has a Path Restriction Bypass which could allow unauthorized file access

Due to a path validation flaw using prefix matching instead of canonical path comparison, it was possible to bypass directory restrictions and access files outside the CWD. Successful exploitation depends on the presence of or ability to create a directory with the same prefix as the CWD and the...

7.7CVSS6.4AI score0.00875EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2025/08/04 3:15 p.m.13 views

Claude Code Research Preview has a Path Restriction Bypass which could allow unauthorized file access

Due to a path validation flaw using prefix matching instead of canonical path comparison, it was possible to bypass directory restrictions and access files outside the CWD. Successful exploitation depends on the presence of or ability to create a directory with the same prefix as the CWD and the...

9.1CVSS7.3AI score0.00875EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/04 12:0 a.m.9 views

The vulnerability of the file server, related to incorrect restrictions on the path to the restricted directory, allows a hacker to bypass security restrictions.

The vulnerability of the server-filesystem is related to incorrect restrictions on the path to the restricted directory. Exploiting this vulnerability allows a malicious actor to bypass security restrictions remotely...

7.8CVSS5.8AI score0.00502EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2025/07/29 12:0 a.m.3 views

SAMSUNG DMS 安全漏洞

SAMSUNG DMS is a data management server from Samsung South Korea. A security vulnerability exists in SAMSUNG DMS that stems from an improperly restricted path that could lead to the creation of arbitrary files...

7.1CVSS6.6AI score0.00329EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/07/28 12:0 a.m.6 views

The vulnerability of the Mattermost instant messaging application, related to an incorrect restriction on the path to the restricted catalog, allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Mattermost instant messaging application is related to an incorrect restriction on the path name to the restricted directory. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...

9.9CVSS5.5AI score0.00586EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/24 12:0 a.m.7 views

The vulnerability of the uploadFWBinary method in the network management system for monitoring industrial networks of Siemens SINEC NMS allows a intruder to gain unauthorized access to file writing and execute arbitrary code.

The vulnerability of the uploadFWBinary method in the network management system for monitoring industrial networks of Siemens SINEC NMS is related to an incorrect restriction on the path name to the restricted directory. Exploiting this vulnerability could allow a malicious actor, operating...

9CVSS7.9AI score0.07166EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/24 12:0 a.m.8 views

The vulnerability of the unZipJarFilestoLocation method in the network management system allows a intruder to gain unauthorized access to file recording and execute arbitrary code. This vulnerability is present in Siemens SINEC NMS systems used for monitoring industrial networks.

The vulnerability of the unZipJarFilestoLocation method in the network management system for monitoring industrial networks of Siemens SINEC NMS is related to an incorrect limitation on the path name to the restricted directory. Exploiting this vulnerability could allow a malicious actor, operati...

9CVSS7.9AI score0.07166EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/22 12:0 a.m.10 views

The vulnerability of the Booco business automation platform lies in the improper limitation of the path name to the restricted access catalog. This allows attackers to create or overwrite files in the file system’s directories and execute arbitrary code.

The vulnerability of the Booco business automation platform is related to an incorrect restriction on the path name for restricted access catalogs. Exploiting this vulnerability allows a malicious actor to create or re-record files in file system catalogs and execute arbitrary code...

9.1CVSS5.8AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/21 12:0 a.m.7 views

The vulnerability of the automated system for emulating intruder actions in Caldera, related to an incorrect restriction on the path name to the restricted catalog, allows an intruder to execute arbitrary code.

The vulnerability of the automated system for emulating intruder actions in Caldera is related to an incorrect restriction on the path name to the restricted catalog. Exploiting this vulnerability allows an intruder operating remotely to execute arbitrary code by sending a specially crafted HTTP...

9CVSS6AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/17 12:0 a.m.28 views

The vulnerability of the setuptools project’s packaging simplification library arises from an incorrect limitation on the path to the restricted-access directory. This allows a malicious actor to compromise the vulnerable system.

The vulnerability of the setuptools project’s packaging simplification library is related to an incorrect restriction on the path name for the restricted access directory. Exploiting this vulnerability could allow a malicious actor to compromise the vulnerable system remotely...

9CVSS6.7AI score0.01479EPSS
Exploits4References15Affected Software21
BDU FSTEC
BDU FSTEC
added 2025/07/15 12:0 a.m.8 views

The vulnerability of the NetMRI network monitoring program lies in the improper restriction of the path name to the restricted access directory, allowing attackers to read arbitrary files.

The vulnerability of the NetMRI network monitoring program lies in the improper restriction of the path name to the restricted-access directory. Exploiting this vulnerability allows a malicious actor to read arbitrary files...

5.3CVSS5.6AI score0.06044EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/14 12:0 a.m.9 views

The vulnerability of the graphical SFTP and SCP client for the Windows operating system, WinSCP, arises from incorrect path name restrictions for access-controlled directories. This allows attackers to create a special file and control its path on a remote server.

The vulnerability of the graphical SFTP and SCP client programs for the Windows operating system is related to incorrect path name restrictions for access to restricted directories. Exploiting this vulnerability allows an attacker to create a special file and control its path on a remote server...

6.8CVSS5.6AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/14 12:0 a.m.9 views

The vulnerability of the PHP Snappy library relates to incorrect restrictions on the path to the restricted directory. This allows attackers to gain unauthorized access to local files and directories.

The vulnerability of the PHP Snappy library is related to an incorrect limitation on the path name for the restricted access directory. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to local files and directories on the server when...

8.6CVSS5.5AI score
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/07/09 12:0 a.m.6 views

WordPress plugin SureForms 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue...

7.5CVSS6.7AI score0.00465EPSS
Exploits0References3
Redos
Redos
added 2025/07/01 12:0 a.m.6 views

ROS-20250630-01

A vulnerability in the pgAdmin 4 database management tool exists due to an incorrect restriction of the name of the of the path to a restricted directory. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute arbitrary code...

9.8CVSS9.6AI score0.64846EPSS
Exploits5
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.7 views

The vulnerability of the Golang programming language lies in the improper limitation of path names to restricted access directories, allowing attackers to gain unauthorized access to protected information.

The vulnerability of the Golang programming language is related to input validation errors when processing directory traversals in file names. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

4.4CVSS5.4AI score0.00238EPSS
Exploits0References7Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/06/19 12:0 a.m.7 views

The vulnerability in the ZendTo web application for transferring files involves an incorrect restriction on the path to the restricted directory. This allows a malicious actor to gain read and write access to data, or cause a service failure.

The vulnerability in the web application for transferring files via ZendTo is related to an incorrect restriction on the path to the restricted directory during the processing of the tmpname parameter. Exploiting this vulnerability can allow an attacker to gain read and modify access to data, or...

6.5CVSS8AI score0.6424EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/13 12:0 a.m.10 views

The vulnerability of the SSLVPN microprogramming system for network interfaces from SonicWall SMA 100 allows a hacker to bypass security restrictions.

The vulnerability of the SSLVPN microprogramming system for network interfaces from SonicWall SMA 100 relates to an incorrect restriction on the path name to the restricted access directory. Exploiting this vulnerability could allow a malicious actor to bypass security restrictions remotely...

9CVSS8AI score0.02975EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder