Lucene search
K

2059 matches found

Prion
Prion
added 2023/12/27 3:15 p.m.14 views

Input validation

Improper Input Validation vulnerability in Izmir Katip Çelebi University University Information Management System allows Absolute Path Traversal.This issue affects University Information Management System: before 30.11.2023...

7.5CVSS9.3AI score0.00764EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/12/27 2:36 p.m.19 views

CVE-2023-6190 Authenicated Path Traversal in İzmir Katip Çelebi University

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in İzmir Katip Çelebi University University Information Management System allows Absolute Path Traversal. This issue affects University Information Management System: before 30.11.2023...

9.8CVSS9.6AI score0.00764EPSS
Exploits0References2
CVE
CVE
added 2023/12/27 2:36 p.m.38 views

CVE-2023-6190

CVE-2023-6190 is an authentication-relevant path traversal vulnerability in İzmir Katip Çelebi University University Information Management System, caused by improper limitation of a pathname to a restricted directory (absolute path traversal). The NVD entry notes impact across confidentiality, i...

9.8CVSS8.4AI score0.00764EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/12/27 12:0 a.m.2 views

PT-2023-32559

Name of the Vulnerable Software and Affected Versions İzmir Katip Çelebi University University Information Management System versions prior to 30.11.2023 Description The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as 'Path Traversal', which allow...

9.8CVSS7.3AI score0.00764EPSS
Exploits0References11
OSV
OSV
added 2023/12/25 6:15 a.m.4 views

CVE-2022-41761

An issue was discovered in NOKIA NFM-T R19.9. An Absolute Path Traversal vulnerability exists under /cgi-bin/R19.9/viewlog.pl of the VM Manager WebUI via the logfile parameter, allowing a remote authenticated attacker to read arbitrary files...

6.5CVSS5.9AI score0.008EPSS
Exploits1References1
NVD
NVD
added 2023/12/25 6:15 a.m.14 views

CVE-2022-41761

An issue was discovered in NOKIA NFM-T R19.9. An Absolute Path Traversal vulnerability exists under /cgi-bin/R19.9/viewlog.pl of the VM Manager WebUI via the logfile parameter, allowing a remote authenticated attacker to read arbitrary files...

6.5CVSS0.008EPSS
Exploits1References1
Prion
Prion
added 2023/12/25 6:15 a.m.21 views

Path traversal

An issue was discovered in NOKIA NFM-T R19.9. An Absolute Path Traversal vulnerability exists under /cgi-bin/R19.9/viewlog.pl of the VM Manager WebUI via the logfile parameter, allowing a remote authenticated attacker to read arbitrary files...

4CVSS6.8AI score0.008EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2023/12/25 12:0 a.m.3 views

Nokia NFM-T Security Vulnerability

Nokia NFM-T is a transport network function manager from Nokia of Finland. A security vulnerability exists in Nokia NFM-T version R19.9, which originates from an absolute path traversal vulnerability that could allow an authenticated, remote attacker to read arbitrary files...

6.5CVSS6.7AI score0.008EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/12/25 12:0 a.m.30 views

CVE-2022-41761

An issue was discovered in NOKIA NFM-T R19.9. An Absolute Path Traversal vulnerability exists under /cgi-bin/R19.9/viewlog.pl of the VM Manager WebUI via the logfile parameter, allowing a remote authenticated attacker to read arbitrary files...

6.4AI score0.008EPSS
Exploits1References1
CVE
CVE
added 2023/12/25 12:0 a.m.39 views

CVE-2022-41761

The issue is an Absolute Path Traversal in Nokia NFM-T R19.9 VM Manager WebUI. Affected component is the endpoint /cgi-bin/R19.9/viewlog.pl, exploitable via the logfile parameter by an authenticated remote attacker to read arbitrary files. Root cause is path traversal in that endpoint; no public ...

6.5CVSS6.2AI score0.008EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/12/25 12:0 a.m.6 views

PT-2023-14030 · Nokia · Nokia Nfm-T

Name of the Vulnerable Software and Affected Versions: NOKIA NFM-T version R19.9 Description: An issue exists in the VM Manager WebUI under the endpoint "/cgi-bin/R19.9/viewlog.pl" via the logfile parameter, allowing a remote authenticated attacker to read arbitrary files due to an Absolute Path...

6.5CVSS6.3AI score0.008EPSS
Exploits1References4
NVD
NVD
added 2023/12/18 2:15 p.m.22 views

CVE-2023-5115

An absolute path traversal attack exists in the Ansible automation platform. This flaw allows an attacker to craft a malicious Ansible role and make the victim execute the role. A symlink can be used to overwrite a file outside of the extraction path...

6.3CVSS0.00859EPSS
Exploits0References5
OSV
OSV
added 2023/12/18 2:15 p.m.5 views

AZL-34540 CVE-2023-5115 affecting package ansible for versions less than 2.17.0-1

An absolute path traversal attack exists in the Ansible automation platform. This flaw allows an attacker to craft a malicious Ansible role and make the victim execute the role. A symlink can be used to overwrite a file outside of the extraction path...

6.3CVSS7AI score0.00859EPSS
Exploits0References1
OSV
OSV
added 2023/12/18 2:15 p.m.6 views

AZL-32279 CVE-2023-5115 affecting package ansible for versions less than 2.14.11-1

An absolute path traversal attack exists in the Ansible automation platform. This flaw allows an attacker to craft a malicious Ansible role and make the victim execute the role. A symlink can be used to overwrite a file outside of the extraction path...

6.3CVSS5.8AI score0.00859EPSS
Exploits0References1
OSV
OSV
added 2023/12/18 2:15 p.m.1 views

DEBIAN-CVE-2023-5115

An absolute path traversal attack exists in the Ansible automation platform. This flaw allows an attacker to craft a malicious Ansible role and make the victim execute the role. A symlink can be used to overwrite a file outside of the extraction path...

6.3CVSS6.9AI score0.00859EPSS
Exploits0References1
OSV
OSV
added 2023/12/18 2:15 p.m.2 views

UBUNTU-CVE-2023-5115

An absolute path traversal attack exists in the Ansible automation platform. This flaw allows an attacker to craft a malicious Ansible role and make the victim execute the role. A symlink can be used to overwrite a file outside of the extraction path...

6.3CVSS7AI score0.00859EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/12/18 1:43 p.m.20 views

CVE-2023-5115 Ansible: malicious role archive can cause ansible-galaxy to overwrite arbitrary files

An absolute path traversal attack exists in the Ansible automation platform. This flaw allows an attacker to craft a malicious Ansible role and make the victim execute the role. A symlink can be used to overwrite a file outside of the extraction path...

6.3CVSS6.6AI score0.00859EPSS
Exploits0References4
OSV
OSV
added 2023/11/30 10:15 p.m.5 views

CVE-2021-35975

Absolute path traversal vulnerability in the Systematica SMTP Adapter component up to v2.0.1.101 in Systematica Radius up to v.3.9.256.777 allows remote attackers to read arbitrary files via a full pathname in GET parameter "file" in URL. Also: affected components in same product - HTTP Adapter u...

5.3CVSS5.9AI score0.01069EPSS
Exploits1References1
Prion
Prion
added 2023/11/30 10:15 p.m.15 views

Path traversal

Absolute path traversal vulnerability in the Systematica SMTP Adapter component up to v2.0.1.101 in Systematica Radius up to v.3.9.256.777 allows remote attackers to read arbitrary files via a full pathname in GET parameter "file" in URL. Also: affected components in same product - HTTP Adapter u...

5CVSS7.2AI score0.01069EPSS
Exploits1References1Affected Software6
OSV
OSV
added 2023/11/23 3:15 p.m.2 views

CVE-2023-6118

Path Traversal: '/../filedir' vulnerability in Neutron IP Camera allows Absolute Path Traversal.This issue affects IP Camera: before b1130.1.0.1...

7.5CVSS5.8AI score0.00761EPSS
Exploits0References1
Rows per page
Query Builder