Lucene search
+L

18 matches found

Tenable Nessus
Tenable Nessus
added 2022/05/23 12:0 a.m.21 views

Debian DLA-3015-1 : ark - LTS security update

The remote Debian 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3015 advisory. - In kerfuffle/jobs.cpp in KDE Ark before 20.08.0, a crafted archive can install files outside the extraction directory via ../ directory traversal. CVE-2020-16116...

4.3CVSS4.9AI score0.01706EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.13 views

Mageia: Security Advisory (MGASA-2020-0323)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS3.8AI score0.01706EPSS
Exploits0References4
Mageia
Mageia
added 2020/08/18 5:41 p.m.26 views

Updated ark packages fix security vulnerability

A maliciously crafted archive with "../" in the file paths would install files anywhere in the user's home directory upon extraction CVE-2020-16116...

4.3CVSS1.4AI score0.01706EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/08/13 12:0 a.m.30 views

openSUSE Security Update : ark (openSUSE-2020-1183)

This update for ark fixes the following issues : - Fixed a directory traversal bug boo1174773, CVE-2020-16116. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2020-1183. The text description of this plug...

4.3CVSS4.7AI score0.01706EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/08/13 12:0 a.m.18 views

openSUSE: Security Advisory for ark (openSUSE-SU-2020:1183-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

4.3CVSS3.8AI score0.01706EPSS
Exploits0References2
OSV
OSV
added 2020/08/12 8:29 a.m.5 views

OPENSUSE-SU-2020:1183-2 Security update for ark

This update for ark fixes the following issues: - Fixed a directory traversal bug boo1174773, CVE-2020-16116...

4.3CVSS3.8AI score0.01706EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/08/10 12:0 a.m.22 views

Fedora 31 : ark (2020-cac5ae9b6e)

Security update for CVE-2020-16116, https://kde.org/info/security/advisory-20200730-1.txt Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...

4.3CVSS4.8AI score0.01706EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2020/08/10 12:0 a.m.15 views

Fedora: Security Advisory for ark (FEDORA-2020-cac5ae9b6e)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

4.3CVSS3.9AI score0.01706EPSS
Exploits0References2
OSV
OSV
added 2020/08/03 8:15 p.m.14 views

CVE-2020-16116

In kerfuffle/jobs.cpp in KDE Ark before 20.08.0, a crafted archive can install files outside the extraction directory via ../ directory traversal...

3.3CVSS3.8AI score
Exploits0References10
UbuntuCve
UbuntuCve
added 2020/08/03 8:15 p.m.27 views

CVE-2020-16116

In kerfuffle/jobs.cpp in KDE Ark before 20.08.0, a crafted archive can install files outside the extraction directory via ../ directory traversal...

4.3CVSS5.8AI score0.01706EPSS
Exploits0References6
Cvelist
Cvelist
added 2020/08/03 7:34 p.m.26 views

CVE-2020-16116

In kerfuffle/jobs.cpp in KDE Ark before 20.08.0, a crafted archive can install files outside the extraction directory via ../ directory traversal...

3.5AI score0.01706EPSS
Exploits0References10
CVE
CVE
added 2020/08/03 7:34 p.m.233 views

CVE-2020-16116

CVE-2020-16116 affects KDE Ark prior to version 20.08.0, where kerfuffle/jobs.cpp does not sanitize extraction paths, allowing a crafted archive to write outside the extraction directory via a ../ path traversal. The impact is potential writing of files outside the target directory, with follow-o...

4.3CVSS3.6AI score0.01706EPSS
Exploits0References10Affected Software1
AlpineLinux
AlpineLinux
added 2020/08/03 7:34 p.m.43 views

CVE-2020-16116

In kerfuffle/jobs.cpp in KDE Ark before 20.08.0, a crafted archive can install files outside the extraction directory via ../ directory traversal...

4.3CVSS3.6AI score0.01706EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/08/03 12:0 a.m.22 views

Debian DSA-4738-1 : ark - security update

Dominik Penner discovered that the Ark archive manager did not sanitise extraction paths, which could result in maliciously crafted archives writing outside the extraction directory. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian...

4.3CVSS4.6AI score0.01706EPSS
Exploits0References4
Debian
Debian
added 2020/07/31 8:17 p.m.51 views

[SECURITY] [DSA 4738-1] ark security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4738-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 31, 2020 https://www.debian.org/security/faq -...

4.3CVSS3.4AI score0.01706EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2020/07/31 1:44 p.m.17 views

CVE-2020-16116

In kerfuffle/jobs.cpp in KDE Ark before 20.08.0, a crafted archive can install files outside the extraction directory via ../ directory traversal...

4.3CVSS5.3AI score0.01706EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/07/31 12:0 a.m.28 views

FreeBSD : ark -- directory traversal (d1ef1138-d273-11ea-a757-e0d55e2a8bf9)

KDE Project Security Advisory reports : KDE Project Security AdvisoryTitle:Ark: maliciously crafted archive can install files outside the extraction directory.Risk Rating:ImportantCVE:CVE-2020-16116Versions:ark Date:30 July 2020Overview A maliciously crafted archive with '../' in the file paths...

4.3CVSS4.7AI score0.01706EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2020/07/30 12:0 a.m.38 views

ark -- directory traversal

KDE Project Security Advisory reports: KDE Project Security Advisory Title: Ark: maliciously crafted archive can install files outside the extraction directory. Risk Rating: Important CVE: CVE-2020-16116 Versions: ark Date: 30 July 2020 Overview A maliciously crafted archive with "../" in the fil...

4.3CVSS5.8AI score0.01706EPSS
Exploits0References1
Rows per page
Query Builder