Lucene search
K

9 matches found

NVD
NVD
added 2026/06/10 10:16 a.m.16 views

CVE-2026-11853

Debusine is an integrated solution to build, distribute and maintain a Debian-based distribution. Debian source packages .dsc and upload artifacts .changes are manifest files that name the files that make up the artifact. The parser used to read these files in Debusine accepted arbitrary fully...

6.5CVSS0.00269EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/10 12:0 a.m.11 views

PT-2026-48397

Name of the Vulnerable Software and Affected Versions Debusine affected versions not specified Description Debusine uses a parser to read Debian source packages .dsc and upload artifacts .changes, which are manifest files listing the components of an artifact. This parser accepts arbitrary paths...

6.5CVSS6AI score0.00269EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-0291

Malware in sbrugna...

7.8CVSS7.6AI score0.01505EPSS
Exploits1References14
Prion
Prion
added 2019/12/16 8:15 p.m.14 views

Design/Logic Flaw

In Yarn before 1.21.1, the package install functionality can be abused to generate arbitrary symlinks on the host filesystem by using specially crafted "bin" keys. Existing files could be overwritten depending on the current user permission set...

6.8CVSS7.5AI score0.01505EPSS
Exploits1References7Affected Software1
OSV
OSV
added 2019/12/16 8:15 p.m.2 views

UBUNTU-CVE-2019-10773

In Yarn before 1.21.1, the package install functionality can be abused to generate arbitrary symlinks on the host filesystem by using specially crafted "bin" keys. Existing files could be overwritten depending on the current user permission set...

7.8CVSS7.2AI score0.01505EPSS
Exploits1References7
Cvelist
Cvelist
added 2019/12/16 7:31 p.m.23 views

CVE-2019-10773

In Yarn before 1.21.1, the package install functionality can be abused to generate arbitrary symlinks on the host filesystem by using specially crafted "bin" keys. Existing files could be overwritten depending on the current user permission set...

7.6AI score0.01505EPSS
Exploits1References7
OSV
OSV
added 2018/09/04 3:29 p.m.21 views

CVE-2018-10928

A flaw was found in RPC request using gfs3symlinkreq in glusterfs server which allows symlink destinations to point to file paths outside of the gluster volume. An authenticated attacker could use this flaw to create arbitrary symlinks pointing anywhere on the server and execute arbitrary code on...

8.8CVSS7.1AI score0.02699EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2018/09/04 3:29 p.m.23 views

CVE-2018-10928

A flaw was found in RPC request using gfs3symlinkreq in glusterfs server which allows symlink destinations to point to file paths outside of the gluster volume. An authenticated attacker could use this flaw to create arbitrary symlinks pointing anywhere on the server and execute arbitrary code on...

8.8CVSS6.9AI score0.02699EPSS
Exploits0References4
Cvelist
Cvelist
added 2018/09/04 3:0 p.m.24 views

CVE-2018-10928

A flaw was found in RPC request using gfs3symlinkreq in glusterfs server which allows symlink destinations to point to file paths outside of the gluster volume. An authenticated attacker could use this flaw to create arbitrary symlinks pointing anywhere on the server and execute arbitrary code on...

8.8CVSS8.7AI score0.02699EPSS
Exploits0References8
Rows per page
Query Builder