Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/05/15 7:57 p.m.11 views

CVE-2026-42590

Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.30.0, The ExifTool metadata write blocklist in Gotenberg can be bypassed using ExifTool's group-prefix syntax, enabling arbitrary file rename, move, hardlink, and symlink creation on the server. ExifTool supports group-prefix...

8.2CVSS5.9AI score0.0029EPSS
Exploits1References1
EUVD
EUVD
added 2026/05/14 3:36 p.m.14 views

EUVD-2026-30316

Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.30.0, The ExifTool metadata write blocklist in Gotenberg can be bypassed using ExifTool's group-prefix syntax, enabling arbitrary file rename, move, hardlink, and symlink creation on the server. ExifTool supports group-prefix...

8.2CVSS5.9AI score0.0029EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/05/14 3:36 p.m.8 views

CVE-2026-42590

Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.30.0, The ExifTool metadata write blocklist in Gotenberg can be bypassed using ExifTool's group-prefix syntax, enabling arbitrary file rename, move, hardlink, and symlink creation on the server. ExifTool supports group-prefix...

8.2CVSS5.9AI score0.0029EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.29 views

PT-2026-38381

Name of the Vulnerable Software and Affected Versions Gotenberg versions prior to 8.30.0 Description The ExifTool metadata write blocklist can be bypassed using group-prefix syntax, allowing an attacker to perform arbitrary file rename, move, hardlink, and symlink creation on the server. The...

8.2CVSS5.9AI score0.0029EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2004/07/23 12:0 a.m.31 views

Fedora Core 2 : kernel-2.6.6-1.435.2.3 (2004-205)

During an audit of the Linux kernel, SUSE discovered a flaw in the Linux kernel that inappropriately allows an unprivileged user to change the group ID of a file to his/her own group ID. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the name CVE-2004-0497 to this...

2.1CVSS5.3AI score0.00801EPSS
Exploits6References2
RedHat Linux
RedHat Linux
added 2004/07/02 8:22 a.m.4 views

security flaw

Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files, such as NFS exported files in kernel 2.4...

2.1CVSS5.8AI score0.00801EPSS
Exploits6References4
Rows per page
Query Builder