Lucene search
K

82 matches found

Prion
Prion
added 2022/08/31 4:15 p.m.34 views

Input validation

An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a crafted file name, this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation...

6.5CVSS8.4AI score0.04271EPSS
Exploits0References9Affected Software3
AlpineLinux
AlpineLinux
added 2022/08/31 3:33 p.m.35 views

CVE-2022-1271

An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a crafted file name, this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation...

8.8CVSS8.8AI score0.04271EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2022/08/31 3:33 p.m.3 views

CVE-2022-1271

An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a crafted file name, this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation...

8.2AI score0.04271EPSS
Exploits0References9
Cvelist
Cvelist
added 2022/08/31 3:33 p.m.30 views

CVE-2022-1271

An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a crafted file name, this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation...

8.6AI score0.04271EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2022/08/31 3:33 p.m.97 views

CVE-2022-1271

An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a crafted file name, this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation...

8.8CVSS8.1AI score0.04271EPSS
Exploits0
OSV
OSV
added 2022/08/31 3:33 p.m.32 views

CVE-2022-1271

An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a crafted file name, this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation...

8.8CVSS2.6AI score0.04271EPSS
Exploits0References11
CVE
CVE
added 2022/08/31 3:33 p.m.1110 views

CVE-2022-1271

CVE-2022-1271 affects GNU gzip's zgrep: an attacker can cause arbitrary file writes by supplying crafted multi-line filenames. Two or more consecutive newlines in filenames lead to content and target file names being embedded in the same path, and insufficient validation enables remote, low-privi...

8.8CVSS8.5AI score0.04271EPSS
Exploits0References9Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/07/29 12:0 a.m.28 views

EulerOS 2.0 SP10 : xz (EulerOS-SA-2022-2174)

According to the versions of the xz packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Vulnerability in the Oracle Communications Cloud Native Core Unified Data Repository product of Oracle Communications component: UDR GNU Gzip. The...

8.8CVSS6.9AI score0.04271EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/07/29 12:0 a.m.27 views

EulerOS 2.0 SP10 : gzip (EulerOS-SA-2022-2133)

According to the versions of the gzip package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Vulnerability in the Oracle Communications Cloud Native Core Unified Data Repository product of Oracle Communications component: UDR GNU Gzip. The...

8.8CVSS6.9AI score0.04271EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/07/08 12:0 a.m.49 views

EulerOS 2.0 SP9 : xz (EulerOS-SA-2022-1985)

According to the versions of the xz packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a...

8.8CVSS7AI score0.04271EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/07/08 12:0 a.m.26 views

EulerOS 2.0 SP9 : xz (EulerOS-SA-2022-2015)

According to the versions of the xz packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a...

8.8CVSS7AI score0.04271EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/07/08 12:0 a.m.40 views

EulerOS 2.0 SP9 : gzip (EulerOS-SA-2022-1998)

According to the versions of the gzip package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, ...

8.8CVSS7AI score0.04271EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/07/08 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for xz (EulerOS-SA-2022-1985)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.2AI score0.04271EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/06/10 12:0 a.m.35 views

Amazon Linux AMI : xz (ALAS-2022-1598)

The version of xz installed on the remote host is prior to 5.2.2-1.14. It is, therefore, affected by a vulnerability as referenced in the ALAS-2022-1598 advisory. An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name...

8.8CVSS7AI score0.04271EPSS
Exploits0References3
Amazon
Amazon
added 2022/06/09 12:0 a.m.25 views

Important: gzip

Issue Overview: An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a crafted file name, this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to...

8.8CVSS7.2AI score0.04271EPSS
Exploits0
Amazon
Amazon
added 2022/06/09 12:0 a.m.27 views

Important: xz

Issue Overview: An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a crafted file name, this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to...

8.8CVSS7.2AI score0.04271EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2022/06/03 1:51 p.m.3 views

gzip: arbitrary-file-write vulnerability

An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a crafted file name, this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation...

8.8CVSS7.2AI score0.04271EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/05/17 12:0 a.m.18 views

SUSE SLES15 Security Update : gzip (SUSE-SU-2022:1674-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:1674-1 advisory. - CVE-2022-1271: Add hardening for zgrep. bsc1198062 Tenable has extracted the preceding description block directly from the SUSE security...

8.8CVSS6.8AI score0.04271EPSS
Exploits0References3
Amazon
Amazon
added 2022/04/27 12:0 a.m.39 views

Important: gzip, xz

Issue Overview: An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a crafted file name, this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to...

8.8CVSS7.2AI score0.04271EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2022/04/26 4:49 p.m.3 views

gzip: arbitrary-file-write vulnerability

An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a crafted file name, this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation...

8.8CVSS7.2AI score0.04271EPSS
Exploits0References4
Rows per page
Query Builder