Lucene search
K

8 matches found

NVD
NVD
added 2 hours ago4 views

CVE-2026-14361

The consul-template library before version 0.42.1 is vulnerable to a path redirection issue in the writeToFile template helper that may allow template output to be written outside the intended directory or to overwrite an existing file. This vulnerability CVE-2026-14361 is fixed in consul-templat...

4.7CVSS
Exploits0References1
CVE
CVE
added 2 hours ago8 views

CVE-2026-14361

The CVE-2026-14361 issue affects consul-template prior to 0.42.1, where the writeToFile helper opens the destination path directly and follows links in the path. This can allow template output to be written outside the intended directory or overwrite an existing file. The root cause is path redir...

4.7CVSS5.9AI score
Exploits0References1
EUVD
EUVD
added 2 hours ago3 views

EUVD-2026-42346

The consul-template library before version 0.42.1 is vulnerable to a path redirection issue in the writeToFile template helper that may allow template output to be written outside the intended directory or to overwrite an existing file. This vulnerability CVE-2026-14361 is fixed in consul-templat...

4.7CVSS
Exploits0References1
Cvelist
Cvelist
added 2 hours ago6 views

CVE-2026-14361 Consul-template is vulnerable to path redirection in writeToFile through symlink attack

The consul-template library before version 0.42.1 is vulnerable to a path redirection issue in the writeToFile template helper that may allow template output to be written outside the intended directory or to overwrite an existing file. This vulnerability CVE-2026-14361 is fixed in consul-templat...

4.7CVSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/01/06 12:29 a.m.4 views

SUSE CVE-2024-41265

A TLS certificate verification issue discovered in cortex v0.42.1 allows attackers to obtain sensitive information via the makeOperatorRequest function...

7.5CVSS6.3AI score0.00258EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/10/28 12:0 a.m.2 views

Fedora: Security Advisory (FEDORA-2025-c4c8863fd7)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.4CVSS6.8AI score0.00384EPSS
Exploits2References4
CNNVD
CNNVD
added 2024/08/01 12:0 a.m.6 views

Cortex 安全漏洞

Cortex is a Cortex open source application. It provides horizontally scalable, high-availability, multi-tenant long-term storage. A security vulnerability exists in Cortex version 0.42.1 that stems from the presence of a TLS certificate validation issue that allows an attacker to obtain sensitive...

7.5CVSS6.2AI score0.00258EPSS
Exploits0References2
OSV
OSV
added 2022/03/25 12:0 a.m.7 views

GHSA-2C7W-V459-CWGF MotionEye allows attackers to access sensitive information

MotionEye v0.42.1 and below allows attackers to access sensitive information via a GET request to /config/list. To exploit this vulnerability, a regular user password must be unconfigured...

7.5CVSS7.4AI score0.06829EPSS
Exploits1References6
Rows per page
Query Builder