Lucene search
+L

201 matches found

CNNVD
CNNVD
added 2023/06/01 12:0 a.m.5 views

JetBrains Ktor framework 安全漏洞

JetBrains Ktor framework is a web application framework from the Czech company JetBrains. A security vulnerability exists in JetBrains Ktor framework versions prior to 2.3.1, which stems from a header for authentication data that can be added to an exception message...

3.3CVSS4.8AI score0.0021EPSS
Exploits0References2
NVD
NVD
added 2023/04/24 1:15 p.m.26 views

CVE-2022-48476

In JetBrains Ktor before 2.3.0 path traversal in the resolveResource method was possible...

7.5CVSS7.5AI score0.00751EPSS
Exploits0References1
Prion
Prion
added 2023/04/24 1:15 p.m.19 views

Path traversal

In JetBrains Ktor before 2.3.0 path traversal in the resolveResource method was possible...

5CVSS7.5AI score0.00751EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/04/24 12:21 p.m.71 views

CVE-2022-48476

In JetBrains Ktor, prior to version 2.3.0, there is a path traversal vulnerability in the resolveResource method. Affected software is Ktor (JetBrains’ framework); root cause per sources is a path traversal flaw in resolveResource. The CVE is linked across multiple feeds (NVD/Red Hat/OSV/etc.). I...

7.5CVSS7.5AI score0.00751EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/24 12:21 p.m.10 views

CVE-2022-48476

In JetBrains Ktor before 2.3.0 path traversal in the resolveResource method was possible...

7.5CVSS7.6AI score0.00751EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/04/24 12:21 p.m.37 views

CVE-2022-48476

In JetBrains Ktor before 2.3.0 path traversal in the resolveResource method was possible...

7.5CVSS7.7AI score0.00751EPSS
Exploits0References1
OSV
OSV
added 2023/04/24 12:21 p.m.25 views

CVE-2022-48476

In JetBrains Ktor before 2.3.0 path traversal in the resolveResource method was possible...

7.5CVSS7.8AI score0.00751EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/04/24 12:0 a.m.7 views

JetBrains Ktor framework 路径遍历漏洞

JetBrains Ktor framework is a web application framework from the Czech company JetBrains. A security vulnerability exists in JetBrains Ktor framework versions prior to 2.3.0, which stems from the discovery of a contained path traversal vulnerability in the resolveResource method...

7.5CVSS7.3AI score0.00751EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/04/24 12:0 a.m.8 views

PT-2023-15809 · Jetbrains · Jetbrains Ktor

Name of the Vulnerable Software and Affected Versions: JetBrains Ktor versions prior to 2.3.0 Description: The issue allows path traversal in the resolveResource method. Recommendations: For versions prior to 2.3.0, update to version 2.3.0 or later to resolve the issue. As a temporary workaround,...

7.5CVSS7.5AI score0.00751EPSS
Exploits0References7
vulnersOsv
vulnersOsv
added 2022/08/13 12:0 a.m.6 views

org.kodein.di:kodein-di-framework-ktor-server-controller-jvm (>=6.2.0 <=7.11.0), org.kodein.di:kodein-di-framework-ktor-server-jvm (>=6.2.0 <=7.11.0) potentially affected by CVE-2022-38180 via io.ktor:ktor (>=1.1.1 <=1.5.4)

io.ktor:ktor MAVEN version =1.1.1, =6.2.0, =6.2.0, =7.11.0 Source cves: CVE-2022-38180 Source advisory: OSV:GHSA-HCCX-CG4V-HRJX...

6.5CVSS6.5AI score0.00609EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/08/13 12:0 a.m.6 views

org.kodein.di:kodein-di-framework-ktor-server-controller-jvm (>=6.2.0 <=7.11.0), org.kodein.di:kodein-di-framework-ktor-server-jvm (>=6.2.0 <=7.11.0) potentially affected by CVE-2022-38179 via io.ktor:ktor (>=1.1.1 <=1.5.4)

io.ktor:ktor MAVEN version =1.1.1, =6.2.0, =6.2.0, =7.11.0 Source cves: CVE-2022-38179 Source advisory: OSV:GHSA-V866-GWF5-W92F...

6.1CVSS6.3AI score0.00401EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2022/08/13 12:0 a.m.36 views

JetBrain Ktor before 2.1.0 vulnerable to selection of wrong authentication provider

In JetBrains Ktor before 2.1.0 the wrong authentication provider could be selected in some cases...

6.5CVSS6.5AI score0.00609EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2022/08/13 12:0 a.m.30 views

JetBrains Ktor before 2.1.0 was vulnerable to a Reflect File Download attack

JetBrains Ktor before 2.1.0 was vulnerable to a Reflect File Download attack...

6.1CVSS6.1AI score0.00401EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2022/08/13 12:0 a.m.32 views

GHSA-V866-GWF5-W92F JetBrains Ktor before 2.1.0 was vulnerable to a Reflect File Download attack

JetBrains Ktor before 2.1.0 was vulnerable to a Reflect File Download attack...

6.1CVSS6.1AI score0.00401EPSS
Exploits0References4
OSV
OSV
added 2022/08/13 12:0 a.m.24 views

GHSA-HCCX-CG4V-HRJX JetBrain Ktor before 2.1.0 vulnerable to selection of wrong authentication provider

In JetBrains Ktor before 2.1.0 the wrong authentication provider could be selected in some cases...

6.5CVSS6.5AI score0.00609EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/08/12 10:15 a.m.3 views

CVE-2022-38180

In JetBrains Ktor before 2.1.0 the wrong authentication provider could be selected in some cases...

6.5CVSS5.8AI score0.00609EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2022/08/12 10:15 a.m.28 views

CVE-2022-38179

JetBrains Ktor before 2.1.0 was vulnerable to the Reflect File Download attack...

6.1CVSS0.00401EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/08/12 10:15 a.m.4 views

CVE-2022-38179

JetBrains Ktor before 2.1.0 was vulnerable to the Reflect File Download attack...

6.1CVSS5.8AI score0.00401EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2022/08/12 10:15 a.m.29 views

CVE-2022-38180

In JetBrains Ktor before 2.1.0 the wrong authentication provider could be selected in some cases...

6.5CVSS0.00609EPSS
Exploits0References2
Prion
Prion
added 2022/08/12 10:15 a.m.19 views

Design/Logic Flaw

JetBrains Ktor before 2.1.0 was vulnerable to the Reflect File Download attack...

5.8CVSS6.2AI score0.00401EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder