Lucene search
K

382 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-45299

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in the IpFile argument of rust-lang webbrowser-rs v0.8.2 allows attackers to access arbitrary files via supplying a crafted URL. CVE-2022-45299 Note th...

9.8CVSS8.1AI score0.01349EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2017-17522

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Lib/webbrowser.py in Python through 3.6.3 does not validate strings before launching the program specified by the BROWSER environment variable, which might allo...

8.8CVSS8AI score0.03595EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 2:50 a.m.6 views

CVE-2023-0093

Okta Advanced Server Access Client versions 1.13.1 through 1.65.0 are vulnerable to command injection due to the third party library webbrowser. An outdated library, webbrowser, used by the ASA client was found to be vulnerable to command injection. To exploit this issue, an attacker would need t...

8.8CVSS8.7AI score0.01097EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:48 p.m.7 views

CVE-2022-45299

An issue in the IpFile argument of rust-lang webbrowser-rs v0.8.2 allows attackers to access arbitrary files via supplying a crafted URL...

9.8CVSS6.8AI score0.01349EPSS
Exploits1References1
OSV
OSV
added 2025/04/06 7:56 p.m.5 views

CVE-2025-31488 Plain Craft Launcher's custom homepage can use Internet Explorer to load web pages with the help of controls such as WebBrowser

Plain Craft Launcher PCL is a launcher for Minecraft. PCL allows users to use homepages provided by third parties. If controls such as WebBrowser are used in the homepage, WPF will use Internet Explorer to load the specified webpage. If the user uses a malicious homepage, the attacker can use IE...

4.9CVSS6.7AI score0.00161EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/03/28 12:0 a.m.5 views

The vulnerability of the Lib/webbrowser.py component in the Python programming language allows a perpetrator to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Lib/webbrowser.py component of the Python interpreter is related to insufficient neutralization of special elements in requests. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

9.3CVSS7.6AI score0.03595EPSS
Exploits1References5Affected Software3
OSV
OSV
added 2023/03/06 9:15 p.m.3 views

CVE-2023-0093

Okta Advanced Server Access Client versions 1.13.1 through 1.65.0 are vulnerable to command injection due to the third party library webbrowser. An outdated library, webbrowser, used by the ASA client was found to be vulnerable to command injection. To exploit this issue, an attacker would need t...

8.8CVSS7.2AI score0.01097EPSS
Exploits0References1
Prion
Prion
added 2023/03/06 9:15 p.m.21 views

Command injection

Okta Advanced Server Access Client versions 1.13.1 through 1.65.0 are vulnerable to command injection due to the third party library webbrowser. An outdated library, webbrowser, used by the ASA client was found to be vulnerable to command injection. To exploit this issue, an attacker would need t...

6.8CVSS9.1AI score0.01097EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/03/06 12:0 a.m.60 views

CVE-2023-0093

CVE-2023-0093 affects Okta Advanced Server Access Client versions 1.13.1–1.65.0. The root cause is a vulnerable third‑party library, webbrowser , used by the ASA client, enabling command injection . Exploitation requires the user to be phished into entering an attacker‑controlled server URL durin...

8.8CVSS9AI score0.01097EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/03/06 12:0 a.m.27 views

CVE-2023-0093

Okta Advanced Server Access Client versions 1.13.1 through 1.65.0 are vulnerable to command injection due to the third party library webbrowser. An outdated library, webbrowser, used by the ASA client was found to be vulnerable to command injection. To exploit this issue, an attacker would need t...

9.3AI score0.01097EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:36 a.m.5 views

SUSE CVE-2017-17522

Lib/webbrowser.py in Python through 3.6.3 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. NOTE: a software maintainer indicates that exploitation is...

8.8CVSS9.3AI score0.03595EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:22 a.m.2 views

SUSE CVE-2022-45299

An issue in the IpFile argument of rust-lang webbrowser-rs v0.8.2 allows attackers to access arbitrary files via supplying a crafted URL...

9.8CVSS7AI score0.01349EPSS
Exploits1References3
vulnersOsv
vulnersOsv
added 2023/01/13 9:30 p.m.6 views

GuiNistRs (=0.1.0), ablavema (=0.4.2) +329 more potentially affected by CVE-2022-45299 via webbrowser (>=0.1.3 <=0.8.15)

webbrowser CARGO version =0.1.3, =0.0.6, =0.0.7-alpha.3, =0.0.7-alpha.2, =0.0.7-alpha.1, =0.0.7-alpha.1, =0.1.0, =0.1.0, =1.0.9, =0.1.0, =0.1.2 - antigravity =0.0.5 and more Source cves: CVE-2022-45299 Source advisory: OSV:GHSA-M589-MV4Q-P7RJ...

9.8CVSS7.2AI score0.01349EPSS
Exploits1
Github Security Blog
Github Security Blog
added 2023/01/13 9:30 p.m.24 views

webbrowser-rs allows attackers to access arbitrary files via supplying a crafted URL

An issue in the IpFile argument of rust-lang webbrowser-rs v0.8.2 allows attackers to access arbitrary files via supplying a crafted URL...

9.8CVSS8.8AI score0.01349EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2023/01/13 9:15 p.m.31 views

CVE-2022-45299

An issue in the IpFile argument of rust-lang webbrowser-rs v0.8.2 allows attackers to access arbitrary files via supplying a crafted URL...

9.8CVSS9.3AI score0.01349EPSS
Exploits1References1
OSV
OSV
added 2023/01/13 9:15 p.m.3 views

DEBIAN-CVE-2022-45299

An issue in the IpFile argument of rust-lang webbrowser-rs v0.8.2 allows attackers to access arbitrary files via supplying a crafted URL...

9.8CVSS8.7AI score0.01349EPSS
Exploits1References1
OSV
OSV
added 2023/01/13 9:15 p.m.28 views

CVE-2022-45299

An issue in the IpFile argument of rust-lang webbrowser-rs v0.8.2 allows attackers to access arbitrary files via supplying a crafted URL...

9.8CVSS9.4AI score0.01349EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2023/01/13 9:15 p.m.23 views

CVE-2022-45299

An issue in the IpFile argument of rust-lang webbrowser-rs v0.8.2 allows attackers to access arbitrary files via supplying a crafted URL...

9.8CVSS7.3AI score0.01349EPSS
Exploits1References2
Prion
Prion
added 2023/01/13 9:15 p.m.16 views

Design/Logic Flaw

An issue in the IpFile argument of rust-lang webbrowser-rs v0.8.2 allows attackers to access arbitrary files via supplying a crafted URL...

7.5CVSS9.3AI score0.01349EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2023/01/13 9:15 p.m.2 views

UBUNTU-CVE-2022-45299

An issue in the IpFile argument of rust-lang webbrowser-rs v0.8.2 allows attackers to access arbitrary files via supplying a crafted URL...

9.8CVSS7.4AI score0.01349EPSS
Exploits1References3
Rows per page
Query Builder