Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2017-12938

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - UnRAR before 5.5.7 allows remote attackers to bypass a directory-traversal protection mechanism via vectors involving a symlink to the . directory, a symlink to...

7.5CVSS7.2AI score0.0357EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/04 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-25018

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - UnRAR 5.6.1.7 through 5.7.4 and 6.0.3 has an out-of-bounds write during a memcpy in QuickOpen::ReadRaw when called from QuickOpen::ReadNext. CVE-2018-25018 Note...

7.8CVSS7.4AI score0.01314EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/05/07 12:0 a.m.7 views

PT-2022-2560

Name of the Vulnerable Software and Affected Versions UnRAR versions prior to 6.12 Description The issue allows directory traversal to write to files during an extract operation, as demonstrated by creating a /.ssh/authorized keys file. This can be exploited by remote attackers to execute arbitra...

7.8CVSS8.5AI score0.98975EPSS
Exploits14References99
OSV
OSV
added 2021/08/25 10:26 a.m.6 views

SUSE-SU-2021:2834-1 Security update for unrar

This update for unrar to version 5.6.1 fixes several issues. These security issues were fixed: - CVE-2017-12938: Prevent remote attackers to bypass a directory-traversal protection mechanism via vectors involving a symlink to the . directory, a symlink to the .. directory, and a regular file...

10CVSS9.1AI score0.10027EPSS
Exploits9References10
OSV
OSV
added 2018/04/03 3:16 p.m.7 views

SUSE-SU-2018:0862-1 Security update for unrar

This update for unrar to version 5.6.1 fixes several issues. These security issues were fixed: - CVE-2017-12938: Prevent remote attackers to bypass a directory-traversal protection mechanism via vectors involving a symlink to the . directory, a symlink to the .. directory, and a regular file...

10CVSS9.1AI score0.10027EPSS
Exploits8References10
CNVD
CNVD
added 2017/09/04 12:0 a.m.5 views

unrar buffer overflow vulnerability

unrar also known as unrar-free or unrar-gpl is a decompression software used in Linux. A buffer overflow vulnerability exists in the unrarlib.c file in unrar version 0.0.1. A remote attacker could exploit this vulnerability to cause a denial of service or execute arbitrary code...

9.1CVSS9.3AI score0.01798EPSS
Exploits0References1
OSV
OSV
added 2017/09/03 8:29 p.m.4 views

DEBIAN-CVE-2017-14121

The DecodeNumber function in unrarlib.c in unrar 0.0.1 aka unrar-free or unrar-gpl suffers from a NULL pointer dereference flaw triggered by a crafted RAR archive. NOTE: this may be the same as one of the several test cases in the CVE-2017-11189 references...

5.5CVSS6.8AI score0.01118EPSS
Exploits0References1
OSV
OSV
added 2017/08/18 1:29 p.m.3 views

UBUNTU-CVE-2017-12938

UnRAR before 5.5.7 allows remote attackers to bypass a directory-traversal protection mechanism via vectors involving a symlink to the . directory, a symlink to the .. directory, and a regular file...

7.5CVSS7AI score0.0357EPSS
Exploits1References4
Rows per page
Query Builder