7 matches found
PT-2026-42617
Summary The Fission storagesvc component registers archive CRUD handlers /v1/archive GET / POST / DELETE and /v1/archives list directly on its HTTP router without performing any authentication or authorization. Any caller able to reach the storagesvc ClusterIP — including any other workload in th...
RHCOS 3 : OpenShift Container Platform 3.11.569 (RHSA-2021:4827)
The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:4827 advisory. - jenkins: FilePathmkdirs does not check permission to create parent directories CVE-2021-21685 - jenkins: File path filters do not...
Security update for libarchive
This update for libarchive fixes the following issues: CVE-2024-20697: Fixed Out of bounds Remote Code Execution Vulnerability bsc1225972. CVE-2024-48958: Fixed out-of-bounds access via a crafted archive file in executefilterdelta function bsc1231624. Patch Instructions: To install this SUSE upda...
PT-2024-6093
Name of the Vulnerable Software and Affected Versions HashiCorp Nomad versions 0.6.1 through 1.6.13 HashiCorp Nomad versions 1.7.0 through 1.7.10 HashiCorp Nomad versions 1.8.0 through 1.8.2 Description The archive unpacking process in HashiCorp Nomad is vulnerable to writes outside the allocatio...
PT-2024-2745 · Jetbrains · Jetbrains Teamcity +1
Name of the Vulnerable Software and Affected Versions: JetBrains TeamCity versions prior to 2023.11.3 Description: The issue is related to path traversal in JetBrains TeamCity, allowing an attacker to read data within JAR archives. This can be exploited by a remote attacker. The vulnerability is...
PT-2020-14258 · Helm +2 · Helm +2
Name of the Vulnerable Software and Affected Versions: Helm versions prior to 2.16.11 Helm versions prior to 3.3.2 Description: A Helm plugin can contain duplicates of the same entry, with the last one always used. If a plugin is compromised, this lowers the level of access that an attacker needs...
Переполнение буфера в ListServ
Переполнение буфера при обращении к Web-архиву...