Lucene search
+L

305 matches found

Prion
Prion
added 2021/10/08 10:15 a.m.22 views

Denial of service

A Denial-of-Service DoS vulnerability was discovered in F-Secure Atlant whereby the AVRDL unpacking module component used in certain F-Secure products can crash while scanning a fuzzed files. The exploit can be triggered remotely by an attacker. A successful attack will result in Denial-of-Servic...

4.3CVSS6.4AI score0.00545EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/10/08 12:0 a.m.6 views

F-Secure Atlant 安全漏洞

F-secure Atlant is a platform for building applications that can scan and detect malicious files from the Finnish company F-Secure F-Secure. F-Secure Atlant suffers from a security vulnerability that stems from the fact that the AVRDL unpacking module component used in certain F-Secure products m...

6.5CVSS6.5AI score0.00545EPSS
Exploits0References4
OSV
OSV
added 2021/08/25 8:58 p.m.24 views

GHSA-62JX-8VMH-4MCW Links in archive can create arbitrary directories

When unpacking a tarball that contains a symlink the tar crate may create directories outside of the directory it's supposed to unpack into. The function errors when it's trying to create a file, but the folders are already created at this point...

7.5CVSS7.3AI score0.01392EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2021/08/25 8:58 p.m.20 views

Links in archive can create arbitrary directories

When unpacking a tarball that contains a symlink the tar crate may create directories outside of the directory it's supposed to unpack into. The function errors when it's trying to create a file, but the folders are already created at this point...

7.5CVSS7.2AI score0.01392EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2021/08/25 8:43 p.m.14 views

GHSA-2367-C296-3MP2 Arbitrary file overwrite in tar-rs

When unpacking a tarball with the unpackin-family of functions it's intended that only files within the specified directory are able to be written. Tarballs with hard links or symlinks, however, can be used to overwrite any file on the filesystem. Tarballs can contain multiple entries for the sam...

7.5CVSS7.3AI score0.01676EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2021/08/25 8:43 p.m.18 views

Arbitrary file overwrite in tar-rs

When unpacking a tarball with the unpackin-family of functions it's intended that only files within the specified directory are able to be written. Tarballs with hard links or symlinks, however, can be used to overwrite any file on the filesystem. Tarballs can contain multiple entries for the sam...

7.5CVSS7.3AI score0.01676EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2021/08/24 7:15 p.m.0 views

CVE-2021-30881

An input validation issue was addressed with improved memory handling. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, tvOS 15.1, watchOS 8.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. Unpacking a maliciously crafted archive may lead to arbitrary code...

7.8CVSS7.3AI score0.01214EPSS
Exploits0References6
OSV
OSV
added 2021/08/16 7:15 p.m.18 views

CVE-2021-32825

bblfshd is an open source self-hosted server for source code parsing. In bblfshd before commit 4265465b9b6fb5663c30ee43806126012066aad4 there is a "zipslip" vulnerability. The unsafe handling of symbolic links in an unpacking routine may enable attackers to read and/or write to arbitrary location...

9.1CVSS6.9AI score
Exploits0References3
Prion
Prion
added 2021/08/16 7:15 p.m.15 views

Design/Logic Flaw

bblfshd is an open source self-hosted server for source code parsing. In bblfshd before commit 4265465b9b6fb5663c30ee43806126012066aad4 there is a "zipslip" vulnerability. The unsafe handling of symbolic links in an unpacking routine may enable attackers to read and/or write to arbitrary location...

5.5CVSS8.9AI score0.00918EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2021/08/16 7:0 p.m.57 views

CVE-2021-32825

CVE-2021-32825 pertains to bblfshd, an open-source self-hosted server for source code parsing. The vulnerability, a zipslip flaw in the unpacking routine, arises from unsafe handling of symbolic links, allowing an attacker to read or write outside the designated target folder. Impact can include ...

9.1CVSS6.4AI score0.00918EPSS
Exploits1References3Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2021/08/16 12:0 a.m.42 views

Path Traversal

bblfshd is an open source self-hosted server for source code parsing. In bblfshd there is a zipslip vulnerability. The unsafe handling of symbolic links in an unpacking routine may enable attackers to read and/or write to arbitrary locations outside the designated target folder. This issue may le...

9.1CVSS1.8AI score0.00918EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.2 views

bblfshd 后置链接漏洞

bblfshd is a cli tool for controlling installed drivers and querying the status of daemons. A backlink vulnerability exists in bblfshd, which stems from the incorrect handling of symbolic links during the unpacking process of the product, and can be exploited by an attacker to write a malicious...

9.1CVSS8.3AI score0.00918EPSS
Exploits1References4
CNVD
CNVD
added 2021/06/17 12:0 a.m.14 views

Facebook WhatsApp for Android path traversal vulnerability

Facebook WhatsApp is a mobile application from Facebook, Inc. that uses the Internet to send text messages. A security vulnerability exists in WhatsApp for Android and WhatsApp Business for Android, which stems from a lack of file name validation when unpacking files, and could be exploited to...

9.1CVSS3.5AI score0.01134EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/06/11 12:0 a.m.5 views

Facebook WhatsApp for Android 路径遍历漏洞

Facebook WhatsApp is a mobile application from Facebook, Inc. that uses the Internet to send text messages. A security vulnerability exists in WhatsApp for Android and WhatsApp Business for Android, which stems from a lack of file name validation when unpacking files, and could be exploited to...

9.1CVSS5.6AI score0.01134EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/06/09 12:0 a.m.6 views

ConnMan 缓冲区错误漏洞

Arch Linux ConnMan 1.39 is an application from the Arch Linux community in the United States. It provides Intel's modular network connection manager. A buffer error vulnerability exists in ConnMan that stems from a stack-based buffer overflow when ConnMan is unpacked via NAME, RDATA, or RDLENGTH ...

9.8CVSS8.6AI score0.02863EPSS
Exploits1References11
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2012:0598-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS10AI score0.99998EPSS
Exploits44References4
Malwarebytes
Malwarebytes
added 2021/05/31 6:15 p.m.110 views

Revisiting the NSIS-based crypter

This blog post was authored by hasherezade NSIS Nullsoft Scriptable Install System is a framework dedicated to creating software installers. It allows to bundle various elements of an application together i.e. the main executable, used DLLs, configs, along with a script that controls where are th...

0.2AI score
Exploits0
OSV
OSV
added 2021/05/10 7:35 p.m.73 views

GHSA-7QW8-847F-PGGM Improper Locking in github.com/containers/storage

A deadlock vulnerability was found in github.com/containers/storage in versions before 1.28.1. When a container image is processed, each layer is unpacked using tar. If one of those layers is not a valid tar archive this causes an error leading to an unexpected situation where the code indefinite...

6.5CVSS6.7AI score0.01587EPSS
Exploits1References11
BDU FSTEC
BDU FSTEC
added 2021/04/21 12:0 a.m.7 views

The vulnerability of the DNS name resolution function in Nucleus NET TCP/IP allows a attacker to execute arbitrary code.

The vulnerability of the DNS record unpacking function in Nucleus NET TCP/IP is related to a pointer overflow that occurs beyond the allocated memory range. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

8.1CVSS7.8AI score0.07194EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2021/04/07 8:15 a.m.25 views

CVE-2020-11247

Out of bound memory read while unpacking data due to lack of offset length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables...

9.4CVSS0.00944EPSS
Exploits0References1
Rows per page
Query Builder