Lucene search
K

19 matches found

Cvelist
Cvelist
added 2026/06/23 3:49 p.m.33 views

CVE-2026-49465 n8n: Git Node Clone and Push Operations Bypass File Sandbox

n8n is an open source workflow automation platform. Prior to 1.123.48, 2.21.8, and 2.22.4, an authenticated user with permission to create or modify workflows could supply a local filesystem path as the source repository in the Git node's Clone operation, or as the target repository in the Push...

6CVSS0.00495EPSS
Exploits0References1
CVE
CVE
added 2026/06/23 3:49 p.m.10 views

CVE-2026-49465

Summary (CVE-2026-49465) : The n8n open source workflow automation platform before versions 1.123.48, 2.21.8, and 2.22.4 is affected. An authenticated user with permission to create or modify workflows could pass a local filesystem path as the source repository in the Git node’s Clone operation, ...

7.7CVSS5.8AI score0.00495EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/06/16 5:37 p.m.4 views

NPM: n8n: Git Node Clone and Push Operations Bypass File Sandbox

NPM: n8n: Git Node Clone and Push Operations Bypass File Sandbox vulnerability discovered by ? in WordPress Npm n8n versions 1.123.48...

7.7CVSS5.8AI score0.00495EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-0884

Malicious code in bioql PyPI...

9.1CVSS9AI score0.01473EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/22 4:36 p.m.5 views

CVE-2020-28348

HashiCorp Nomad and Nomad Enterprise 0.9.0 up to 0.12.7 client Docker file sandbox feature may be subverted when not explicitly disabled or when using a volume mount type. Fixed in 0.12.8, 0.11.7, and 0.10.8...

6.5CVSS6.8AI score0.01631EPSS
Exploits0
OSV
OSV
added 2022/06/13 12:0 a.m.39 views

GHSA-67HM-27MX-9CG7 Link Following in Deno

Deno =1.14.0 file sandbox does not handle symbolic links correctly. When running Deno with specific write access, the Deno.symlink method can be used to gain access to any directory...

8.4CVSS8.6AI score0.00382EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2022/06/13 12:0 a.m.33 views

Link Following in Deno

Deno =1.14.0 file sandbox does not handle symbolic links correctly. When running Deno with specific write access, the Deno.symlink method can be used to gain access to any directory...

8.4CVSS1.5AI score0.00382EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2022/02/15 1:57 a.m.20 views

GHSA-77CR-6GR8-7RR9 Use After Free in HashiCorp Nomad

HashiCorp Nomad and Nomad Enterprise version 0.9.0 up to 0.12.5 client file sandbox feature can be subverted using either the template or artifact stanzas. Fixed in 0.12.6, 0.11.5, and 0.10.6...

9.1CVSS9.2AI score0.01473EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2022/02/15 1:57 a.m.26 views

Use After Free in HashiCorp Nomad

HashiCorp Nomad and Nomad Enterprise version 0.9.0 up to 0.12.5 client file sandbox feature can be subverted using either the template or artifact stanzas. Fixed in 0.12.6, 0.11.5, and 0.10.6...

9.1CVSS8.7AI score0.01473EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2020/11/24 3:15 a.m.26 views

CVE-2020-28348

HashiCorp Nomad and Nomad Enterprise 0.9.0 up to 0.12.7 client Docker file sandbox feature may be subverted when not explicitly disabled or when using a volume mount type. Fixed in 0.12.8, 0.11.7, and 0.10.8...

6.5CVSS6.7AI score
Exploits0References2
Debian CVE
Debian CVE
added 2020/11/24 2:31 a.m.23 views

CVE-2020-28348

Removed by vendor...

6.5CVSS6.5AI score0.01631EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2020/10/29 1:26 p.m.22 views

CVE-2020-27195

HashiCorp Nomad and Nomad Enterprise version 0.9.0 up to 0.12.5 client file sandbox feature can be subverted using either the template or artifact stanzas. Fixed in 0.12.6, 0.11.5, and 0.10.6...

9.1CVSS1.9AI score0.01473EPSS
Exploits0References3
OSV
OSV
added 2020/10/22 5:15 p.m.14 views

CVE-2020-27195

HashiCorp Nomad and Nomad Enterprise version 0.9.0 up to 0.12.5 client file sandbox feature can be subverted using either the template or artifact stanzas. Fixed in 0.12.6, 0.11.5, and 0.10.6...

9.1CVSS6.7AI score
Exploits0References2
NVD
NVD
added 2020/10/22 5:15 p.m.11 views

CVE-2020-27195

HashiCorp Nomad and Nomad Enterprise version 0.9.0 up to 0.12.5 client file sandbox feature can be subverted using either the template or artifact stanzas. Fixed in 0.12.6, 0.11.5, and 0.10.6...

9.1CVSS0.01473EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/10/22 4:19 p.m.15 views

CVE-2020-27195

HashiCorp Nomad and Nomad Enterprise version 0.9.0 up to 0.12.5 client file sandbox feature can be subverted using either the template or artifact stanzas. Fixed in 0.12.6, 0.11.5, and 0.10.6...

9.3AI score0.01473EPSS
Exploits0References2
CVE
CVE
added 2020/10/22 4:19 p.m.91 views

CVE-2020-27195

CVE-2020-27195 affects HashiCorp Nomad and Nomad Enterprise where the client file sandbox feature can be subverted via the template or artifact stanzas in versions 0.9.0 through 0.12.5. The issue has been fixed in 0.12.6, 0.11.5, and 0.10.6. Affected component: client file sandbox; root cause: sa...

9.1CVSS9.1AI score0.01473EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2020/10/22 4:19 p.m.32 views

CVE-2020-27195

HashiCorp Nomad and Nomad Enterprise version 0.9.0 up to 0.12.5 client file sandbox feature can be subverted using either the template or artifact stanzas. Fixed in 0.12.6, 0.11.5, and 0.10.6...

9.1CVSS9.3AI score0.01473EPSS
Exploits0
Debian CVE
Debian CVE
added 2020/10/22 4:19 p.m.21 views

CVE-2020-27195

Removed by vendor...

9.1CVSS9.2AI score0.01473EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2020/10/22 12:0 a.m.1 views

PT-2020-16658 · Hashicorp · Nomad Enterprise +1

Name of the Vulnerable Software and Affected Versions: HashiCorp Nomad and Nomad Enterprise versions 0.9.0 through 0.12.5 Description: The client file sandbox feature in HashiCorp Nomad and Nomad Enterprise can be subverted using either the template or artifact stanzas. This issue is related to a...

9.1CVSS6.9AI score0.01473EPSS
Exploits0References15
Rows per page
Query Builder