Lucene search
K

567 matches found

Positive Technologies
Positive Technologies
added 2022/02/16 12:0 a.m.4 views

PT-2022-13299 · Uri.Js · Uri.Js

Name of the Vulnerable Software and Affected Versions: urijs versions prior to 1.19.8 Description: The issue allows an attacker to bypass authorization through a user-controlled key. Specifically, it is possible to use case-insensitive protocol schemes, such as HTTP, htTP, HTtp, etc., to bypass...

6.5CVSS5.5AI score0.0158EPSS
Exploits1References13
RedHat Linux
RedHat Linux
added 2022/02/01 9:18 p.m.4 views

nodejs-tar: Insufficient symlink protection due to directory cache poisoning using symbolic links allowing arbitrary file creation and overwrite

A flaw was found in the npm package "tar" aka node-tar. Extracting tar files that contain both a directory and a symlink with the same name, where the symlink and directory names in the archive entry used backslashes as a path separator, made it possible to bypass node-tar symlink checks on...

8.6CVSS7.4AI score0.03286EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/01/25 9:28 a.m.2 views

nodejs-tar: Insufficient symlink protection due to directory cache poisoning using symbolic links allowing arbitrary file creation and overwrite

A flaw was found in the npm package "tar" aka node-tar. Extracting tar files that contain both a directory and a symlink with the same name, where the symlink and directory names in the archive entry used backslashes as a path separator, made it possible to bypass node-tar symlink checks on...

8.6CVSS7.4AI score0.03286EPSS
Exploits0References6
Kitploit
Kitploit
added 2021/09/10 8:30 p.m.41 views

WWWGrep - OWASP Foundation Web Respository

WWWGrep is a rapid search “grepping” mechanism that examines HTML elements by type and permits focused single, multiple file based URLs and recursive with respect to root domain or not searches to be performed. Header names and values may also be recursively searched in this manner. WWWGrep was...

7.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/09/09 12:0 a.m.45 views

Amazon Linux AMI : curl (ALAS-2021-1525)

The version of curl installed on the remote host is prior to 7.61.1-12.99. It is, therefore, affected by a vulnerability as referenced in the ALAS-2021-1525 advisory. A flaw was found in libcurl in the way libcurl handles previously used connections without accounting for 'issuer cert' and...

4.3CVSS6.2AI score0.0627EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2021/09/01 7:1 p.m.38 views

CVE-2021-39134

A flaw was found in nodejs-arborist. On case-insensitive file systems such as macOS and Windows, Arborist’s internal data structure did not see multiple dependencies as separate items that could coexist within the same level in the nodemodules hierarchy when they differ only in the case of their...

8.2CVSS1.9AI score0.00576EPSS
Exploits0References4
OSV
OSV
added 2021/08/31 5:15 p.m.7 views

ALPINE-CVE-2021-39134

@npmcli/arborist, the library that calculates dependency trees and manages the nodemodules folder hierarchy for the npm command line interface, aims to guarantee that package dependency contracts will be met, and the extraction of package contents will always be performed into the expected folder...

7.8CVSS7AI score0.00576EPSS
Exploits0References1
OSV
OSV
added 2021/08/31 5:15 p.m.3 views

DEBIAN-CVE-2021-39134

@npmcli/arborist, the library that calculates dependency trees and manages the nodemodules folder hierarchy for the npm command line interface, aims to guarantee that package dependency contracts will be met, and the extraction of package contents will always be performed into the expected folder...

7.8CVSS7.4AI score0.00576EPSS
Exploits0References1
OSV
OSV
added 2021/08/31 5:15 p.m.1 views

DEBIAN-CVE-2021-37701

The npm package "tar" aka node-tar before versions 4.4.16, 5.0.8, and 6.1.7 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be modified by a symbolic link is not extracted. This is, in part, achieve...

8.6CVSS8AI score0.03286EPSS
Exploits0References1
OSV
OSV
added 2021/08/31 5:15 p.m.1 views

UBUNTU-CVE-2021-39134

@npmcli/arborist, the library that calculates dependency trees and manages the nodemodules folder hierarchy for the npm command line interface, aims to guarantee that package dependency contracts will be met, and the extraction of package contents will always be performed into the expected folder...

8.2CVSS7.1AI score0.00576EPSS
Exploits0References4
OSV
OSV
added 2021/08/31 5:15 p.m.5 views

UBUNTU-CVE-2021-37701

The npm package "tar" aka node-tar before versions 4.4.16, 5.0.8, and 6.1.7 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be modified by a symbolic link is not extracted. This is, in part, achieve...

8.6CVSS7.3AI score0.03286EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/08/31 5:10 p.m.60 views

CVE-2021-37701

A flaw was found in the npm package "tar" aka node-tar. Extracting tar files that contain both a directory and a symlink with the same name, where the symlink and directory names in the archive entry used backslashes as a path separator, made it possible to bypass node-tar symlink checks on...

8.6CVSS1.5AI score0.03286EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2021/08/31 4:5 p.m.40 views

Arbitrary File Creation/Overwrite via insufficient symlink protection due to directory cache poisoning using symbolic links

Impact Arbitrary File Creation, Arbitrary File Overwrite, Arbitrary Code Execution node-tar aims to guarantee that any file whose location would be modified by a symbolic link is not extracted. This is, in part, achieved by ensuring that extracted directories are not symlinks. Additionally, in...

8.6CVSS7.3AI score0.03286EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2021/08/31 4:4 p.m.31 views

GHSA-2H3H-Q99F-3FHC @npmcli/arborist vulnerable to UNIX Symbolic Link (Symlink) Following

Impact Arbitrary File Creation, Arbitrary File Overwrite, Arbitrary Code Execution @npmcli/arborist, the library that calculates dependency trees and manages the nodemodules folder hierarchy for the npm command line interface, aims to guarantee that package dependency contracts will be met, and t...

8.2CVSS6.5AI score0.00576EPSS
Exploits0References6
Packet Storm
Packet Storm
added 2021/08/31 12:0 a.m.215 views

Git LFS Clone Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Git LFS Clone Command Exec', 'Description' = %q Git clients that support delay-capable clean / smudge filters and symbolic links on...

8CVSS0.1AI score0.88644EPSS
Exploits5
Positive Technologies
Positive Technologies
added 2021/08/31 12:0 a.m.4 views

PT-2021-22396 · Npm +3 · @Npmcli/Arborist +4

Name of the Vulnerable Software and Affected Versions: @npmcli/arborist versions prior to 2.8.2 npm versions prior to 7.20.7 Description: The issue arises from how @npmcli/arborist handles package dependencies on case-insensitive file systems, such as macOS and Windows. When multiple dependencies...

9.8CVSS7.6AI score0.77766EPSS
Exploits31References216
AlpineLinux
AlpineLinux
added 2021/08/31 12:0 a.m.121 views

CVE-2021-37701

The npm package "tar" aka node-tar before versions 4.4.16, 5.0.8, and 6.1.7 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be modified by a symbolic link is not extracted. This is, in part, achieve...

8.6CVSS7.8AI score0.03286EPSS
Exploits0
GitLab Advisory Database
GitLab Advisory Database
added 2021/08/30 12:0 a.m.83 views

Improper Handling of Case Sensitivity

Istio is an open source platform for providing a uniform way to integrate microservices, manage traffic flow across microservices, enforce policies and aggregate telemetry data. According to RFC 4343, Istio authorization policy should compare the hostname in the HTTP Host header in a case...

8.3CVSS0.5AI score0.01176EPSS
Exploits0References3Affected Software1
Metasploit
Metasploit
added 2021/08/27 5:42 p.m.74 views

Git LFS Clone Command Exec

Git clients that support delay-capable clean / smudge filters and symbolic links on case-insensitive file systems are vulnerable to remote code execution while cloning a repository. Usage of clean / smudge filters through Git LFS and a case-insensitive file system changes the checkout order of...

8CVSS8.9AI score0.88644EPSS
Exploits5
Veracode
Veracode
added 2021/08/26 4:39 a.m.4 views

Privilege Escalation

github.com/istio/istio is vulnerable to privilege escalation. Lack of case-sensitive comparison of hostname in the HTTP Host header allows an attacker to bypass the authorization policy as it causes the Envoy proxy to route the request hostname in a case-insensitive way...

8.3CVSS8.2AI score0.01176EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder