10 matches found
Fedora: Security Advisory (FEDORA-2025-4af86bb0f8)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2025-a6574c5095)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2025-3445 vulnerabilities
Vulnerabilities for packages: filebrowser, mattermost, kots...
CVE-2025-3445 vulnerabilities
Vulnerabilities for packages: filebrowser, mattermost, kots, mattermost-fips, vault...
forgejo-10.0.3-2.1 on GA media (moderate)
forgejo-10.0.3-2.1 on GA media Announcement ID: openSUSE-SU-2025:15001-1 Rating: moderate Cross-References: CVE-2025-3445 CVSS scores: CVE-2025-3445 SUSE : 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:L Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be...
CVE-2025-3445
A Path Traversal "Zip Slip" vulnerability was found in the mholt/archiver in Go. This vulnerability allows using a crafted ZIP file containing path traversal symlinks to create or overwrite files with the user's privileges or application utilizing the library. When using the archiver, the Unarchi...
CVE-2025-3445
creationtimestamp| type| source ---|---|--- 2025-04-13 22:53:22+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/11568 2025-04-14 00:31:01+00:00| published-proof-of-concept| Telegram/c1q-GHFte0g8fMrLmCmqUtF4vGKyA9I0no24eNdY1lyP1o 2025-04-14 00:48:24+00:00| seen|...
CVE-2025-3445
A Path Traversal "Zip Slip" vulnerability has been identified in mholt/archiver in Go. This vulnerability allows using a crafted ZIP file containing path traversal symlinks to create or overwrite files with the user's privileges or application utilizing the library. When using the...
CVE-2025-3445
CVE-2025-3445 (Zip Slip in mholt/archiver, Go) : A crafted ZIP can cause path traversal during archiver.Unarchive(zipFile, outputDir), permitting write/overwrite of files with the app’s privileges. This can lead to privilege escalation or code execution in affected setups. The advisory notes a TA...
CVE-2025-3445
A Path Traversal "Zip Slip" vulnerability has been identified in mholt/archiver in Go. This vulnerability allows using a crafted ZIP file containing path traversal symlinks to create or overwrite files with the user's privileges or application utilizing the library. When using the...