Lucene search
K

1092 matches found

Snyk
Snyk
added 2025/12/09 8:43 p.m.4 views

Relative Path Traversal

Overview Affected versions of this package are vulnerable to Relative Path Traversal in the untar process. An attacker can execute arbitrary code with elevated privileges by crafting a malicious archive containing symbolic links that overwrite critical files such as /var/run/argo/argoexec, which...

8.8CVSS7.6AI score0.00567EPSS
Exploits2References2
Snyk
Snyk
added 2025/12/09 8:43 p.m.4 views

Relative Path Traversal

Overview Affected versions of this package are vulnerable to Relative Path Traversal in the untar process. An attacker can execute arbitrary code with elevated privileges by crafting a malicious archive containing symbolic links that overwrite critical files such as /var/run/argo/argoexec, which...

8.8CVSS7.7AI score0.00567EPSS
Exploits2References2
NVD
NVD
added 2025/12/09 6:16 p.m.8 views

CVE-2025-62552

Relative path traversal in Microsoft Office Access allows an unauthorized attacker to execute code locally...

7.8CVSS0.00552EPSS
Exploits0References1
OSV
OSV
added 2025/12/09 6:16 p.m.4 views

CVE-2025-62552

Relative path traversal in Microsoft Office Access allows an unauthorized attacker to execute code locally...

7.8CVSS5.9AI score0.00552EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/09 5:55 p.m.7 views

EUVD-2025-202220

Relative path traversal in Microsoft Office Access allows an unauthorized attacker to execute code locally...

7.8CVSS6.8AI score0.00552EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/12/09 8:0 a.m.13 views

Microsoft Access Remote Code Execution Vulnerability

Relative path traversal in Microsoft Office Access allows an unauthorized attacker to execute code locally...

7.8CVSS7.3AI score0.00552EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.5 views

PT-2025-50176

Name of the Vulnerable Software and Affected Versions Microsoft Office Access affected versions not specified Description A relative path traversal issue exists in Microsoft Office Access. This allows an unauthorized attacker to execute code locally. The issue can also allow remote attackers to...

7.8CVSS7.3AI score0.00552EPSS
Exploits0References11
EUVD
EUVD
added 2025/12/04 9:31 p.m.5 views

EUVD-2025-201254

There is a relative path traversal vulnerability in the NI System Web Server that may result in information disclosure. Successful exploitation requires an attacker to send a specially crafted request to the NI System Web Server, allowing the attacker to read arbitrary files. This vulnerability...

8.7CVSS6.1AI score0.00519EPSS
Exploits1References2
CVE
CVE
added 2025/12/04 7:7 p.m.10 views

CVE-2025-12097

CVE-2025-12097 describes a relative path traversal vulnerability in NI System Web Server (2012 and earlier) that could disclose arbitrary files. Connected exploit data confirms real-world PoC on Windows devices, targeting URI paths that bypass normal handling to leak file contents (example reads ...

8.7CVSS6.2AI score0.00519EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/12/04 12:0 a.m.11 views

PT-2025-49118

There is a relative path traversal vulnerability in the NI System Web Server that may result in information disclosure. Successful exploitation requires an attacker to send a specially crafted request to the NI System Web Server, allowing the attacker to read arbitrary files. This vulnerability...

8.7CVSS6.6AI score0.00519EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/12/04 12:0 a.m.4 views

National Instruments System Web Server 安全漏洞

National Instruments System Web Server is a web service component of National Instruments, Inc. A security vulnerability exists in National Instruments System Web Server 2012 and prior versions that originates from relative path traversal and could lead to information disclosure...

8.7CVSS6.3AI score0.00519EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/11/29 8:9 a.m.10 views

CVE-2025-13771

WebITR developed by Uniong has an Arbitrary File Read vulnerability, allowing authenticated remote attackers to exploit Relative Path Traversal to download arbitrary system files...

7.1CVSS7AI score0.00395EPSS
Exploits0References1
OSV
OSV
added 2025/11/28 8:15 a.m.5 views

CVE-2025-13771

WebITR developed by Uniong has an Arbitrary File Read vulnerability, allowing authenticated remote attackers to exploit Relative Path Traversal to download arbitrary system files...

7.1CVSS6AI score0.00395EPSS
Exploits0References2
NVD
NVD
added 2025/11/28 8:15 a.m.4 views

CVE-2025-13771

WebITR developed by Uniong has an Arbitrary File Read vulnerability, allowing authenticated remote attackers to exploit Relative Path Traversal to download arbitrary system files...

7.1CVSS0.00395EPSS
Exploits0References2
CVE
CVE
added 2025/11/28 7:49 a.m.17 views

CVE-2025-13771

CVE-2025-13771 concerns WebITR, a system from Uniong. The vulnerability is an Arbitrary File Read caused by a Relative Path Traversal flaw, allowing authenticated remote attackers to download arbitrary system files. Affected details are consistently described across Red Hat, NVD, CIRCL, ENISA EUV...

7.1CVSS6.7AI score0.00395EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/11/28 7:49 a.m.8 views

CVE-2025-13771 Uniong|WebITR - Arbitrary File Read

WebITR developed by Uniong has an Arbitrary File Read vulnerability, allowing authenticated remote attackers to exploit Relative Path Traversal to download arbitrary system files...

7.1CVSS0.00395EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/28 7:49 a.m.5 views

EUVD-2025-199863

WebITR developed by Uniong has an Arbitrary File Read vulnerability, allowing authenticated remote attackers to exploit Relative Path Traversal to download arbitrary system files...

7.1CVSS6.6AI score0.00395EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/11/28 12:0 a.m.4 views

Uniong WebITR 安全漏洞

Uniong WebITR is an online time and attendance system from China Kaifa Uniong. A security vulnerability exists in Uniong WebITR that originates from relative path traversal and allows remote attackers to download arbitrary system files...

7.1CVSS6.9AI score0.00395EPSS
Exploits0References3
Snyk
Snyk
added 2025/11/24 11:31 p.m.3 views

Relative Path Traversal

Overview Affected versions of this package are vulnerable to Relative Path Traversal due to unsafe path handling. An attacker can access, overwrite, or delete files outside the intended directories by supplying specially crafted names or archive entries containing path traversal sequences...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/11/24 11:31 p.m.4 views

Relative Path Traversal

Overview Affected versions of this package are vulnerable to Relative Path Traversal due to unsafe path handling. An attacker can access, overwrite, or delete files outside the intended directories by supplying specially crafted names or archive entries containing path traversal sequences...

9.8CVSS6.8AI score
Exploits0References2
Rows per page
Query Builder