2 matches found
UBUNTU-CVE-2024-21633
Apktool is a tool for reverse engineering Android APK files. In versions 2.9.1 and prior, Apktool infers resource files' output path according to their resource names which can be manipulated by attacker to place files at desired location on the system Apktool runs on. Affected environments are...
The vulnerability of Emerson Rosemount X-STREAM Enhanced flow gas analyzers’ microprogramming software lies in the lack of name-based path restriction, which allows unauthorized access to protected information by attackers.
The vulnerability of Emerson Rosemount X-STREAM Enhanced flow analyzers’ microprogramming software is related to deficiencies in the name-based path restriction mechanism for access to restricted catalogs. Exploiting this vulnerability could allow an attacker to gain unauthorized access to...