2 matches found
Yearning - Directory Traversal
Yearning has a directory traversal vulnerability that can be exploited by attackers to obtain sensitive information. The vulnerability is present in multiple versions of Yearning. id: CVE-2022-27043 info: name: Yearning - Directory Traversal author: Co5mos severity: high description: | Yearning h...
CVE-2022-27043
Yearning has a Directory Traversal vulnerability (CVE-2022-27043) affecting multiple versions: 2.3.1, 2.3.2 (Interstellar GA) and 2.3.4–2.3.6 (Neptune). Unauthenticated attackers can read arbitrary files from the Yearning database management system. Remediation: update Yearning to a patched versi...