Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Positive Technologies
Positive Technologiesadded 2023/01/13 12:0 a.m.4 views

PT-2023-12726 · Neo4J · Neo4J Graph Database

Name of the Vulnerable Software and Affected Versions: APOC versions prior to 4.4.0.12 APOC versions prior to 4.3.0.12 APOC versions prior to 5.3.1 Description: A path traversal issue found in the apoc.export. procedures of apoc plugins in Neo4j Graph database allows a malicious actor to...

7.1CVSS6.5AI score0.00373EPSS
Exploits0References6
OSV
OSVadded 2022/08/12 3:38 p.m.30 views

GHSA-78F9-745F-278P Neo4j Graph apoc plugins Partial Path Traversal Vulnerability

Impact A partial Directory Traversal Vulnerability found in apoc.log.stream function of apoc plugins in Neo4j Graph database. This issue allows a malicious actor to potentially break out of the expected directory. The impact is limited to sibling directories. For example,...

7.5CVSS7.4AI score0.00256EPSS
Exploits1References7
OSV
OSVadded 2022/03/01 2:15 a.m.8 views

CVE-2021-42767

A directory traversal vulnerability in the apoc plugins in Neo4J Graph database before 4.4.0.1 allows attackers to read local files, and sometimes create local files. This is fixed in 3.5.17, 4.2.10, 4.3.0.4, and 4.4.0.1...

9.1CVSS6.4AI score
Exploits0References2
Prion
Prionadded 2022/03/01 2:15 a.m.11 views

Directory traversal

A directory traversal vulnerability in the apoc plugins in Neo4J Graph database before 4.4.0.1 allows attackers to read local files, and sometimes create local files. This is fixed in 3.5.17, 4.2.10, 4.3.0.4, and 4.4.0.1...

6.4CVSS8.6AI score0.00716EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2022/03/01 1:31 a.m.117 views

CVE-2021-42767

CVE-2021-42767 describes a directory traversal vulnerability in the APOC procedures of Neo4j Graph Database. The flaw allows reading local files and, in some cases, creating local files via the APOC plugin before version 4.4.0.1. Publicly documented fixes exist: upgrade to 3.5.17, 4.2.10, 4.3.0.4...

9.1CVSS8.6AI score0.00716EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2022/03/01 1:31 a.m.17 views

CVE-2021-42767

A directory traversal vulnerability in the apoc plugins in Neo4J Graph database before 4.4.0.1 allows attackers to read local files, and sometimes create local files. This is fixed in 3.5.17, 4.2.10, 4.3.0.4, and 4.4.0.1...

8.9AI score0.00716EPSS
Exploits0References2
OSV
OSVadded 2022/02/01 10:1 p.m.22 views

GHSA-4MPJ-488R-VH6M Neo4j Graph Database vulnerable to Path Traversal

Impact Directory Traversal Vulnerabilities found in several functions of apoc plugins in Neo4j Graph database. The attacker can retrieve and download files from outside the configured directory on the affected server. Under some circumstances, the attacker can also create files. Patches The users...

9.1CVSS9.2AI score0.00716EPSS
Exploits0References3
Rows per page
Query Builder