Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-6297

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documente...

8.2CVSS7.3AI score0.00347EPSS
Exploits0References3
NVD
NVD
added 2025/03/08 5:15 a.m.8 views

CVE-2024-13640

The Print Invoice & Delivery Notes for WooCommerce plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 5.4.1 via the 'wcdn/invoice' directory. This makes it possible for unauthenticated attackers to extract sensitive data stored insecurely in...

5.9CVSS0.00394EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/03/09 2:56 p.m.22 views

CVE-2022-22795 Signiant - Manager+Agents XML External Entity (XXE)

Signiant - Manager+Agents XML External Entity XXE - Extract internal files of the affected machine An attacker can read all the system files, the product is running with root on Linux systems and nt/authority on windows systems, which allows him to access and extract any file on the systems, such...

6.8CVSS9.2AI score0.01016EPSS
Exploits0References1
OSV
OSV
added 2021/11/09 8:59 a.m.23 views

ALSA-2021:4316 Low: zziplib security update

The zziplib is a lightweight library to easily extract data from zip files. Security Fixes: zziplib: infinite loop via the return value of zzipfileread as used in unzzipcatfile CVE-2020-18442 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and othe...

3.3CVSS4.1AI score0.00745EPSS
Exploits1References2
Mageia
Mageia
added 2021/03/04 4:53 p.m.30 views

Updated gnome-autoar packages fix security vulnerability

Yiğit Can Yılmaz discovered that GNOME Autoar could extract files outside of the intended directory. If a user were tricked into extracting a specially crafted archive, a remote attacker could create files in arbitrary locations, possibly leading to code execution CVE-2020-36241...

5.5CVSS3.8AI score0.00639EPSS
Exploits1References2
NVD
NVD
added 2020/06/24 5:15 a.m.10 views

CVE-2020-10277

There is no mechanism in place to prevent a bad operator to boot from a live OS image, this can lead to extraction of sensible files such as the shadow file or privilege escalation by manually adding a new user with sudo privileges on the machine...

6.4CVSS0.00359EPSS
Exploits0References1
NVD
NVD
added 2017/04/06 2:59 p.m.22 views

CVE-2017-0305

F5 SSL Intercept iApp version 1.5.0 - 1.5.7 is vulnerable to an unauthenticated, remote attack that may allow modification of the BIG-IP system configuration, extraction of sensitive system files, and possible remote command execution on the system when deployed using the Explicit Proxy feature...

9.8CVSS9.7AI score0.03776EPSS
Exploits0References1
OSV
OSV
added 2015/11/08 12:0 a.m.97 views

DLA-341-1 php5 - security update

Bulletin has no description...

9.8CVSS8AI score0.46801EPSS
Exploits4
Mozilla
Mozilla
added 2014/03/18 12:0 a.m.67 views

Files extracted during updates are not always read only — Mozilla

Security researcher Ash reported an issue where the extracted files for updates to existing files are not read only during the update process. This allows for the potential replacement or modification of these files during the update process if a malicious application is present on the local syst...

5.5CVSS7.2AI score0.00379EPSS
Exploits2References2Affected Software4
OpenVAS
OpenVAS
added 2010/10/01 12:0 a.m.15 views

Fedora Update for cabextract FEDORA-2010-14722

Check for the Version of cabextract OpenVAS Vulnerability Test Fedora Update for cabextract FEDORA-2010-14722 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

5.1CVSS1AI score0.04027EPSS
Exploits0References2
Fedora
Fedora
added 2009/02/06 5:22 a.m.33 views

[SECURITY] Fedora 9 Update: chmsee-1.0.1-8.fc9

A gtk2 chm document viewer. It uses chmlib to extract files. It uses gecko to display pages. It supports displaying multilingual pages due to gecko. It features bookmarks and tabs. The tabs could be used to jump inside the chm file conveniently. Its UI is clean and handy, also is well localized. ...

10CVSS0.04331EPSS
Exploits0
Rows per page
Query Builder