CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Chainguard•added 2023/09/20 6:30 a.m.•5 views

GHSA-7G3V-4GGR-XVJF vulnerabilities

Vulnerabilities for packages: croc...

Github Security Blog•added 2023/09/20 6:30 a.m.•17 views

Sender can cause a receiver to overwrite files during ZIP extraction in Croc

An issue was discovered in Croc before 9.6.16. A sender can cause a receiver to overwrite files during ZIP extraction...

5.5CVSS5.3AI score0.00066EPSS

Exploits1References7Affected Software1

Chainguard•added 2023/09/20 6:30 a.m.•3 views

GHSA-PPJH-XP5V-46WC vulnerabilities

Vulnerabilities for packages: croc...

Chainguard•added 2023/09/20 6:30 a.m.•3 views

GHSA-HP56-XVF4-G6WR vulnerabilities

Vulnerabilities for packages: croc...

Chainguard•added 2023/09/20 6:15 a.m.•25 views

CVE-2023-43618 vulnerabilities

Vulnerabilities for packages: croc...

5.3CVSS6.9AI score0.00059EPSS

Chainguard•added 2023/09/20 6:15 a.m.•27 views

CVE-2023-43621 vulnerabilities

Vulnerabilities for packages: croc...

4.7CVSS6.9AI score0.00032EPSS

OSV•added 2023/09/20 6:15 a.m.•9 views

CVE-2023-43621

An issue was discovered in Croc through 9.6.5. The shared secret, located on a command line, can be read by local users who list all processes and their arguments...

4.7CVSS7AI score

Exploits0References3

Chainguard•added 2023/09/20 6:15 a.m.•9 views

CVE-2023-43617 vulnerabilities

Vulnerabilities for packages: croc...

5.3CVSS6.9AI score0.00128EPSS

Chainguard•added 2023/09/20 6:15 a.m.•8 views

CVE-2023-43620 vulnerabilities

Vulnerabilities for packages: croc...

7.8CVSS6.9AI score0.00038EPSS

OSV•added 2023/09/20 6:15 a.m.•12 views

CVE-2023-43616

An issue was discovered in Croc through 9.6.5. A sender can cause a receiver to overwrite files during ZIP extraction...

5.5CVSS7AI score

Exploits0References3

ATTACKERKB•added 2023/09/20 6:15 a.m.•1 views

CVE-2023-43616

An issue was discovered in Croc through 9.6.5. A sender can cause a receiver to overwrite files during ZIP extraction...

5.5CVSS5.8AI score0.00066EPSS

Exploits1References4

ATTACKERKB•added 2023/09/20 6:15 a.m.•0 views

CVE-2023-43619

An issue was discovered in Croc through 9.6.5. A sender may send dangerous new files to a receiver, such as executable content or a .ssh/authorizedkeys file...

7.8CVSS5.8AI score0.00038EPSS

Exploits1References4

Chainguard•added 2023/09/20 6:15 a.m.•8 views

CVE-2023-43619 vulnerabilities

Vulnerabilities for packages: croc...

7.8CVSS6.9AI score0.00038EPSS

Prion•added 2023/09/20 6:15 a.m.•14 views

Design/Logic Flaw

An issue was discovered in Croc through 9.6.5. A sender may send dangerous new files to a receiver, such as executable content or a .ssh/authorizedkeys file...

4.4CVSS7.4AI score0.00038EPSS

Exploits1References3Affected Software1

AlpineLinux•added 2023/09/20 12:0 a.m.•24 views

CVE-2023-43619

An issue was discovered in Croc through 9.6.5. A sender may send dangerous new files to a receiver, such as executable content or a .ssh/authorizedkeys file...

7.8CVSS6.9AI score0.00038EPSS