Lucene search
K

8 matches found

NVD
NVD
added 2026/06/23 5:16 p.m.10 views

CVE-2026-12958

Missing symlink validation in Language Servers for AWS may allow an arbitrary file write outside of the workspace trust boundary. This may occur when a local user opens a workspace with a maliciously crafted symlink that resolves to a file path outside the workspace trust boundary. To remediate...

8.5CVSS0.00142EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/04/01 12:0 a.m.8 views

The vulnerability of Engrampa archiver, related to the improper restriction of the path to the limited catalog, allows attackers to upload files to any location within the system.

The vulnerability of Engrampa archiver lies in the lack of checks for the location of symbolic links, which allows arbitrary writing of files to unintended locations. Exploiting this vulnerability could enable a malicious actor to upload files to arbitrary locations within the system...

10CVSS7.8AI score0.01652EPSS
Exploits1References4Affected Software2
SUSE CVE
SUSE CVE
added 2023/02/15 4:35 a.m.4 views

SUSE CVE-2017-1000115

Mercurial prior to version 4.3 is vulnerable to a missing symlink check that can malicious repositories to modify files outside the repository...

5.4CVSS9.5AI score0.04815EPSS
Exploits1References5
OSV
OSV
added 2017/10/05 1:29 a.m.33 views

CVE-2017-1000115

Mercurial prior to version 4.3 is vulnerable to a missing symlink check that can malicious repositories to modify files outside the repository...

7.5CVSS6.8AI score
Exploits0References5
OSV
OSV
added 2017/10/05 1:29 a.m.2 views

DEBIAN-CVE-2017-1000115

Mercurial prior to version 4.3 is vulnerable to a missing symlink check that can malicious repositories to modify files outside the repository...

7.5CVSS7.1AI score0.04815EPSS
Exploits1References1
OSV
OSV
added 2017/10/05 1:29 a.m.5 views

UBUNTU-CVE-2017-1000115

Mercurial prior to version 4.3 is vulnerable to a missing symlink check that can malicious repositories to modify files outside the repository...

7.5CVSS6.8AI score0.04815EPSS
Exploits1References3
PyPA
PyPA
added 2017/10/05 1:29 a.m.9 views

PYSEC-2017-88

Mercurial prior to version 4.3 is vulnerable to a missing symlink check that can malicious repositories to modify files outside the repository...

7.5CVSS6.8AI score0.04815EPSS
Exploits1References6Affected Software1
Prion
Prion
added 2017/10/05 1:29 a.m.24 views

Design/Logic Flaw

Mercurial prior to version 4.3 is vulnerable to a missing symlink check that can malicious repositories to modify files outside the repository...

5CVSS8.2AI score0.04815EPSS
Exploits1References5Affected Software8
Rows per page
Query Builder