2 matches found
CVE-2017-1000420
Syncthing version 0.14.33 and older is vulnerable to symlink traversal resulting in arbitrary file overwrite...
CVE-2017-1000420
CVE-2017-1000420 affects Syncthing up to version 0.14.33, where a symlink traversal flaw allows overwriting arbitrary files. Public documents confirm the root cause is symlink traversal in versioned directories, enabling arbitrary file overwrite, with multiple advisories referencing the same CVE....