Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2013-0248

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The default configuration of javax.servlet.context.tempdir in Apache Commons FileUpload 1.0 through 1.2.2 uses the /tmp directory for uploaded files, which allo...

3.3CVSS8.1AI score0.0068EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/26 5:34 a.m.74 views

Security Bulletin: A vulnerability in Apache Commons Fileupload affects IBM Tivoli Business Service Manager (CVE-2013-2186, CVE-2013-0248, CVE-2016-3092, CVE-2014-0050, 220723)

Summary Apache Commons Fileupload is shipped with IBM Tivoli Business Manager 6.2.0 as part of its web service infrastucture. Information about security vulnerabilities affecting Apache Commons Fileupload has been published in a security bulletin. Vulnerability Details CVEID:CVE-2013-2186...

7.5CVSS8.1AI score0.83175EPSS
Exploits9Affected Software1
vulnersOsv
vulnersOsv
added 2022/05/05 2:48 a.m.7 views

ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +3081 more potentially affected by CVE-2013-0248 via commons-fileupload:commons-fileupload (>=1.0 <=1.2.1)

commons-fileupload:commons-fileupload MAVEN version =1.0, =1.1, =0.0.1, =1.0, =3.1.1, =0.0.1, =1.2.1, =0.0.2, =0.0.2, =0.0.2, =2.2.4 and more Source cves: CVE-2013-0248 Source advisory: OSV:GHSA-VM69-474V-7Q2W...

3.3CVSS7.1AI score0.0068EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/01 11:22 a.m.35 views

Security Bulletin: Apache Commons FileUpload vulnerability affects IBM Tivoli Business Service Manager (CVE-2013-0248)

Summary Apache Commons FileUpload is shipped as part of IBM Tivoli Business Manager 6.2.0. Information about security vulnerabilities affecting Apache Commons FileUpload has been published in a security bulletin. Vulnerability Details CVEID: CVE-2013-0248 DESCRIPTION: Apache Commons FileUpload...

3.3CVSS8.3AI score0.0068EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/02/05 12:53 a.m.36 views

Security Bulletin: Multiple Vulnerabilities in Apache Commons Affect IBM Sterling B2B Integrator (CVE-2016-3092, CVE-2014-0050, CVE-2013-0248)

Summary Multiple vulnerabilities in Apache Commons exists in IBM Sterling B2B Integrator Vulnerability Details CVEID: CVE-2016-3092 DESCRIPTION: Apache Tomcat is vulnerable to a denial of service, caused by an error in the Apache Commons FileUpload component. By sending file upload requests, an...

7.8CVSS1.1AI score0.83175EPSS
Exploits9Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:5 a.m.32 views

Security Bulletin: A security vulnerability has been identified in WebSphere MQ shipped with WebSphere Remote Server (CVE-2013-0248)

Summary WebSphere MQ is shipped as a component of WebSphere Remote Server. Information about a security vulnerability affecting WebSphere MQ has been published in a security bulletin. Vulnerability Details For vulnerability details, see the security bulletin Apache Commons FileUpload vulnerabilit...

3.3CVSS2.4AI score0.0068EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:4 a.m.30 views

Security Bulletin: Apache Commons FileUpload vulnerability affects IBM WebSphere MQ Managed File Transfer (CVE-2013-0248)

Summary A vulnerability in Apache Commons FileUpload component potentially affects IBM WebSphere MQ Managed File Transfer. Vulnerability Details CVEID: CVE-2013-0248 DESCRIPTION: Apache Commons FileUpload could allow a local attacker to launch a symlink attack. Temporary files are created...

3.3CVSS7.6AI score0.0068EPSS
Exploits1Affected Software1
securityvulns
securityvulns
added 2015/09/14 12:0 a.m.196 views

[security bulletin] HPSBMU03409 rev.1 - HP Matrix Operating Environment, Multiple Vulnerabilities

Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04774019 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04774019 Version: 1 HPSBMU03409 rev.1 - HP Matrix Operating Environment, Multiple...

10CVSS0.2AI score0.9994EPSS
Exploits45
UbuntuCve
UbuntuCve
added 2013/03/15 8:55 p.m.28 views

CVE-2013-0248

The default configuration of javax.servlet.context.tempdir in Apache Commons FileUpload 1.0 through 1.2.2 uses the /tmp directory for uploaded files, which allows local users to overwrite arbitrary files via an unspecified symlink attack...

3.3CVSS7.2AI score0.0068EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2013/03/15 1:0 a.m.31 views

CVE-2013-0248

The default configuration of javax.servlet.context.tempdir in Apache Commons FileUpload 1.0 through 1.2.2 uses the /tmp directory for uploaded files, which allows local users to overwrite arbitrary files via an unspecified symlink attack...

3.3CVSS8.4AI score0.0068EPSS
Exploits1
CVE
CVE
added 2013/03/15 1:0 a.m.146 views

CVE-2013-0248

CVE-2013-0248 affects Apache Commons FileUpload 1.0–1.2.2. The default javax.servlet.context.tempdir uses the /tmp directory for uploads, enabling a local user to overwrite arbitrary files via an unspecified symlink attack. Impact is local, with file overwrite risk; exploitation is local. The con...

3.3CVSS8.2AI score0.0068EPSS
Exploits1References6Affected Software1
seebug.org
seebug.org
added 2013/03/10 12:0 a.m.44 views

Apache Commons FileUpload不安全临时文件创建漏洞(CVE-2013-0248)

BUGTRAQ ID: 58326 CVECAN ID: CVE-2013-0248 Apache Commons FileUpload软件包可以向小服务程序和Web应用添加高性能的文件上传功能。 Apache Commons FileUpload v1.0 - 1.2.2在上传文件过程中,会将上传的文件临时存在磁盘上,默认的位于系统的tmp目录内。因为临时文件具有可预测的文件名,并存储在可公开写入的位置,这就易于受到TOCTOU攻击。成功攻击需要攻击者对tmp目录具有写访问权限。将存储位置设在不能公开写入的位置,可以防止此攻击。 0 Apache Group Commons...

3.3CVSS0.0068EPSS
Exploits1
Rows per page
Query Builder