Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:10 a.m.18 views

CVE-2022-36007

Venice is a Clojure inspired sandboxed Lisp dialect with excellent Java interoperability. A partial path traversal issue exists within the functions load-file and load-resource. These functions can be limited to load files from a list of load paths. Assuming Venice has been configured with the lo...

6.1CVSS6.4AI score0.00414EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2022/08/14 12:25 a.m.11 views

CVE-2022-36007 Partial Path Traversal in com.github.jlangch:venice

Venice is a Clojure inspired sandboxed Lisp dialect with excellent Java interoperability. A partial path traversal issue exists within the functions load-file and load-resource. These functions can be limited to load files from a list of load paths. Assuming Venice has been configured with the lo...

6.1CVSS6.2AI score0.00414EPSS
Exploits1References4
Cvelist
Cvelist
added 2022/08/14 12:25 a.m.79 views

CVE-2022-36007 Partial Path Traversal in com.github.jlangch:venice

Venice is a Clojure inspired sandboxed Lisp dialect with excellent Java interoperability. A partial path traversal issue exists within the functions load-file and load-resource. These functions can be limited to load files from a list of load paths. Assuming Venice has been configured with the lo...

6.1CVSS6.1AI score0.00414EPSS
Exploits1References4
CVE
CVE
added 2022/08/14 12:25 a.m.109 views

CVE-2022-36007

Venice (com.github.jlangch:venice) contains a Partial Path Traversal flaw in the load-file and load-resource functions. When given absolute paths whose name prefix matches a configured load path (e.g., "/Users/foo/resources"), an attacker can access files outside the intended directory (e.g., "/U...

6.1CVSS4.2AI score0.00414EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder