Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:39 a.m.6 views

CVE-2017-8921

In FlightGear before 2017.2.1, the FGCommand interface allows overwriting any file the user has write access to, but not with arbitrary data: only with the contents of a FlightGear flightplan XML. A resource such as a malicious third-party aircraft could exploit this to damage files belonging to...

7.5CVSS7.1AI score0.0324EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/07/17 12:0 a.m.17 views

Fedora 26 : FlightGear (2017-60775d65bb)

This updates fixes a security bug in the route manager, to prevent it from overwriting arbitrary files CVE-2017-8921 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and...

7.5CVSS7.4AI score0.0142EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/05/24 12:0 a.m.22 views

Fedora 24 : FlightGear (2017-fc10e3165a)

This updates fixes a security bug in the route manager, to prevent it from overwriting arbitrary files CVE-2017-8921 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and...

7.5CVSS7.4AI score0.0142EPSS
Exploits0References2
OSV
OSV
added 2017/05/12 7:29 p.m.8 views

CVE-2017-8921

In FlightGear before 2017.2.1, the FGCommand interface allows overwriting any file the user has write access to, but not with arbitrary data: only with the contents of a FlightGear flightplan XML. A resource such as a malicious third-party aircraft could exploit this to damage files belonging to...

7.5CVSS7.8AI score
Exploits0References1
CVE
CVE
added 2017/05/12 7:0 p.m.110 views

CVE-2017-8921

In FlightGear, prior to 2017.2.1, FGCommand can overwrite user-writable files with the contents of a FlightGear flightplan (XML); this is a directory traversal issue in Autopilot/route_mgr.cxx stemming from an incomplete fix for CVE-2016-9956. The impact is that a malicious aircraft could damage ...

7.5CVSS7.6AI score0.0142EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder