Lucene search
K

13 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2015-2304

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Absolute path traversal vulnerability in bsdcpio in libarchive 3.1.2 and earlier allows remote attackers to write to arbitrary files via a full pathname in an...

6.4CVSS7.3AI score0.0489EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/03/13 12:0 a.m.49 views

Huawei EulerOS: Security Advisory for libarchive (EulerOS-SA-2020-1226)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.4AI score0.05258EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for libarchive (EulerOS-SA-2019-2202)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.05258EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for libarchive (EulerOS-SA-2019-2604)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.0489EPSS
Exploits3References2
FreeBSD Advisory
FreeBSD Advisory
added 2016/05/31 12:0 a.m.6 views

FreeBSD-SA-16:22.libarchive

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-16:22.libarchive Security Advisory The FreeBSD Project Topic: Directory traversal in cpio1 Category: contrib Module: libarchive Announced: 2016-05-31 Credits:...

6.4CVSS7AI score0.0489EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2015/05/20 12:0 a.m.33 views

SUSE SLED12 / SLES12 Security Update : libarchive (SUSE-SU-2015:0667-1)

libarchive was updated to fix a directory traversal in the bsdcpio tool, which allowed attackers supplying crafted archives to overwrite files. CVE-2015-2304 Also, a integer overflow was fixed that could also overflow buffers. CVE-2013-0211 Note that Tenable Network Security has extracted the...

6.4CVSS7.2AI score0.0489EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2015/03/26 12:0 a.m.27 views

Ubuntu: Security Advisory (USN-2549-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.4CVSS8.1AI score0.0489EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2015/03/25 2:36 p.m.57 views

USN-2549-1: libarchive vulnerabilities

It was discovered that the libarchive bsdcpio utility extracted absolute paths by default without using the --insecure flag, contrary to expectations. If a user or automated system were tricked into extracting cpio archives containing absolute paths, a remote attacker may be able to write to...

6.4CVSS7.4AI score0.0489EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2015/03/24 12:0 a.m.34 views

openSUSE Security Update : libarchive (openSUSE-2015-248)

libarchive was updated to fix a directory traversal in the bsdcpio tool, which allowed attackers supplying crafted archives to overwrite files. CVE-2015-2304 Also, a integer overflow was fixed that could also overflow buffers. CVE-2013-0211 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

6.4CVSS7.2AI score0.0489EPSS
Exploits1References4
OSV
OSV
added 2015/03/16 8:39 a.m.8 views

SUSE-SU-2015:0667-1 Security update for libarchive

libarchive was updated to fix a directory traversal in the bsdcpio tool, which allowed attackers supplying crafted archives to overwrite files. CVE-2015-2304 Also, a integer overflow was fixed that could also overflow buffers. CVE-2013-0211...

6.4CVSS7.7AI score0.0489EPSS
Exploits1References5
OSV
OSV
added 2015/03/15 7:59 p.m.9 views

CVE-2015-2304

Absolute path traversal vulnerability in bsdcpio in libarchive 3.1.2 and earlier allows remote attackers to write to arbitrary files via a full pathname in an archive...

7.6AI score
Exploits0References13
CVE
CVE
added 2015/03/15 7:0 p.m.97 views

CVE-2015-2304

CVE-2015-2304 is a vulnerability in libarchive's bsdcpio (libarchive 3.1.2 and earlier) that allows an attacker to write to arbitrary files by supplying a full pathname in an archive (absolute path traversal). Connected advisories (e.g., EulerOS, RHEL/SUSE OpenVAS/NASL entries) enumerate this CVE...

6.4CVSS7.4AI score0.0489EPSS
Exploits1References13Affected Software1
Debian CVE
Debian CVE
added 2015/03/15 7:0 p.m.47 views

CVE-2015-2304

Absolute path traversal vulnerability in bsdcpio in libarchive 3.1.2 and earlier allows remote attackers to write to arbitrary files via a full pathname in an archive...

6.4CVSS7.1AI score0.0489EPSS
Exploits1
Rows per page
Query Builder