2 matches found
CVE-2026-22769
CVE-2026-22769 affects Dell RecoverPoint for Virtual Machines (RP4VMs) versions prior to 6.0.3.1 HF1, where a hard-coded credential vulnerability can allow an unauthenticated attacker to gain full control of the underlying OS with root-level persistence. A PoC circulating in PacketStorm demonstra...
GHSA-WPFP-CM49-9M9Q HashiCorp go-slug Vulnerable to Zip Slip Attack
Summary HashiCorp’s go-slug library is vulnerable to a zip-slip style attack when a non-existing user-provided path is extracted from the tar entry. This vulnerability, identified as CVE-2025-0377, is fixed in go-slug 0.16.3. Background HashiCorp’s go-slug shared library offers functions for...