Lucene search
K

90 matches found

CNNVD
CNNVD
added 2026/03/16 12:0 a.m.8 views

Unraid 路径遍历漏洞

Unraid is a set of operating systems developed by Unraid Corporation, primarily intended for individuals and small businesses. Unraid has a path traversal vulnerability; this vulnerability stems from the lack of validation for the paths provided by users in the update.php file, which may lead to...

8.8CVSS7.6AI score0.00757EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/13 8:38 p.m.32 views

CVE-2026-3839 Unraid Authentication Request Path Traversal Authentication Bypass Vulnerability

Unraid Authentication Request Path Traversal Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Unraid. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

7.3CVSS0.00651EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/13 8:38 p.m.4 views

CVE-2026-3839

Unraid Authentication Request Path Traversal Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Unraid. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

7.3CVSS5.9AI score0.00651EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/13 8:38 p.m.1 views

CVE-2026-3839 Unraid Authentication Request Path Traversal Authentication Bypass Vulnerability

Unraid Authentication Request Path Traversal Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Unraid. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

7.3CVSS7.3AI score0.00651EPSS
Exploits0References1
CVE
CVE
added 2026/03/13 8:38 p.m.16 views

CVE-2026-3839

CVE-2026-3839 affects Unraid installations and concerns a path traversal/authentication bypass in the auth-request.php component. The root cause, per Red Hat/NVD/NVD-derived descriptions, is insufficient validation of a user-supplied path prior to its use in authentication, enabling an unauthenti...

7.3CVSS7.3AI score0.00651EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/03/13 8:37 p.m.37 views

CVE-2026-3838

CVE-2026-3838 concerns Unraid: a path traversal in update.php allows an attacker with valid authentication to cause remote code execution by abusing improper validation of a user-supplied path. The flaw can execute code with root privileges. Connected sources (Red Hat, NVD, CIRCL, EUVD, Nessus pl...

8.8CVSS7.9AI score0.00757EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/03/13 8:37 p.m.29 views

CVE-2026-3838 Unraid Update Request Path Traversal Remote Code Execution Vulnerability

Unraid Update Request Path Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Unraid. Authentication is required to exploit this vulnerability. The specific flaw exists within the update.php file. The...

8.8CVSS0.00757EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/13 8:37 p.m.2 views

CVE-2026-3838 Unraid Update Request Path Traversal Remote Code Execution Vulnerability

Unraid Update Request Path Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Unraid. Authentication is required to exploit this vulnerability. The specific flaw exists within the update.php file. The...

8.8CVSS7.9AI score0.00757EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/13 8:37 p.m.2 views

CVE-2026-3838

Unraid Update Request Path Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Unraid. Authentication is required to exploit this vulnerability. The specific flaw exists within the update.php file. The...

8.8CVSS6.3AI score0.00757EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/09 12:0 a.m.3 views

PT-2026-24429

Unraid Authentication Request Path Traversal Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Unraid. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

7.3CVSS7.3AI score0.00651EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2026/03/09 12:0 a.m.5 views

Unraid Update Request Path Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Unraid. Authentication is required to exploit this vulnerability. The specific flaw exists within the update.php file. The issue results from the lack of proper validation of a user-supplied path pri...

8.8CVSS6.2AI score0.00757EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/03/09 12:0 a.m.4 views

PT-2026-24428

Name of the Vulnerable Software and Affected Versions Unraid affected versions not specified Description A path traversal flaw exists in the Unraid update request handling mechanism. This issue could allow for remote code execution. The vulnerability is related to the handling of update requests,...

8.8CVSS6.3AI score0.00757EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2026/03/09 12:0 a.m.3 views

Unraid Authentication Request Path Traversal Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of Unraid. Authentication is not required to exploit this vulnerability. The specific flaw exists within the auth-request.php file. The issue results from the lack of proper validation of a user-supplied...

7.3CVSS5.8AI score0.00651EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/12/12 12:0 a.m.4 views

Unraid Web Interface Detection

Binary data unraidwebdetect.nbin...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/12/12 12:0 a.m.2 views

Unraid Installed (Linux)

Binary data unraidnixinstalled.nbin...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/12/12 12:0 a.m.3 views

Unraid < 6.8.1 Multiple Vulnerabilities

The remote host is running a version of Unraid prior to 6.8.1. It is, thereforce, affected by multiple vulnerabilities: - Unraid through 6.8.0 allows Remote Code Execution. CVE-2020-5847 - Unraid 6.8.0 allows authentication bypass. CVE-2020-5849 Note that Nessus has not tested for this issue but...

10CVSS8.2AI score0.95844EPSS
Exploits8References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-8729

Malicious code in bioql PyPI...

9.6CVSS6.4AI score0.00406EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 3:40 p.m.4 views

CVE-2020-5849

Unraid 6.8.0 allows authentication bypass...

7.5CVSS9.5AI score0.93151EPSS
Exploits8References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:38 p.m.4 views

CVE-2020-5847

Unraid through 6.8.0 allows Remote Code Execution...

10CVSS9.6AI score0.95844EPSS
Exploits8References1
OpenVAS
OpenVAS
added 2025/04/04 12:0 a.m.15 views

Unraid OS < 7.0.1 Multiple Vulnerabilities

Unraid OS is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:unraid:unraid"; if description...

9.8CVSS7.4AI score0.72059EPSS
Exploits16References2
Rows per page
Query Builder