Lucene search
+L

5 matches found

OSV
OSV
added 2026/07/08 5:17 p.m.7 views

UBUNTU-CVE-2026-39822

On Unix systems, opening a file in an os.Root improperly follows symlinks to locations outside of the Root when the final path component of the a path is a symbolic link and the path ends in /. For example, 'root.Open"symlink/"' will open "symlink" even when "symlink" is a symbolic link pointing...

7.8CVSS6.1AI score0.00183EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/05/14 6:25 p.m.14 views

go-billy has path traversal vulnerabilities

Impact Multiple path traversal issues exist across different components of go-billy. Insufficient path sanitization and boundary enforcement may allow crafted paths e.g., using .. to escape intended base directories. While go-billy was not originally designed to provide a strong security boundary...

8.1CVSS5.8AI score0.0031EPSS
Exploits0References5Affected Software2
ATTACKERKB
ATTACKERKB
added 2026/02/04 11:5 p.m.4 views

CVE-2025-22873

It was possible to improperly access the parent directory of an os.Root by opening a filename ending in "../". For example, Root.Open"../" would open the parent directory of the Root. This escape only permits opening the parent directory itself, not ancestors of the parent or files contained with...

3.8CVSS5.2AI score0.00238EPSS
Exploits0References5Affected Software1
CNNVD
CNNVD
added 2025/12/02 12:0 a.m.6 views

Entrust nShield Connect XC 安全漏洞

Entrust nShield Connect XC is a network-connected hardware security module from Entrust, Inc. A security vulnerability exists in the Entrust nShield Connect XC that originates from a user with OS root privileges being able to make unauthenticated modifications to the Chassis Management Board...

9.8CVSS6.8AI score0.00547EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-20730

Malware in sbrugna...

9.3CVSS8AI score0.01161EPSS
Exploits0References3
Rows per page
Query Builder