7 matches found
[SECURITY] [DLA 3386-1] grunt security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3386-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb April 06, 2023 https://wiki.debian.org/LTS -...
Debian dla-3386 : grunt - security update
The remote Debian 10 host has a package installed that is affected by a vulnerability as referenced in the dla-3386 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3386-1 [email protected] https://www.debian.org/lts/security/...
Ubuntu: Security Advisory (USN-5847-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
3d-preview (>=1.0.0 <=1.0.1), 3dviewercomponent (=1.0.0) +2603 more potentially affected by CVE-2022-0436 via grunt (>=0.2.14 <=1.4.1)
grunt NPM version =0.2.14, =1.0.0, =0.0.2, =1.0.1, =1.0.0, =0.0.1, =1.0.0-alpha1, =0.1.0, =0.4.0, =0.0.9, =0.0.6, =0.12.0-edge9, =0.0.5, =0.0.2, =1.0.1 and more Source cves: CVE-2022-0436 Source advisory: OSV:GHSA-J383-35PM-C5H4...
CVE-2022-0436 Path Traversal in gruntjs/grunt
Path Traversal in GitHub repository gruntjs/grunt prior to 1.5.2...
CVE-2022-0436
CVE-2022-0436 describes a path traversal in gruntjs/grunt prior to 1.5.2. Connected advisories confirm Grunt’s vulnerability lies in filesystem path handling (notably in copy/IO paths), enabling a local attacker to traverse directories and read/write files. Affected product: Grunt (GruntJS task r...
CVE-2022-0436
Path Traversal in GitHub repository gruntjs/grunt prior to 1.5.2...