3 matches found
CVE-2017-1002153
Koji 1.13.0 does not properly validate SCM paths, allowing an attacker to work around blacklisted paths for build submission...
CVE-2017-1002153
Koji 1.13.0 does not properly validate SCM paths, allowing an attacker to work around blacklisted paths for build submission...
CVE-2017-1002153
Koji 1.13.0 contains a flaw where SCM paths are not properly validated, allowing an attacker to bypass the blacklisted paths during build submission. This is CVE-2017-1002153. The connected sources specify the root cause (improper SCM path validation) and the affected version, with no remediation...