Duplicate Advisory: OpenClaw: SSH sandbox tar upload follows symlinks, enabling arbitrary file write on remote host

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-fv94-qvg8-xqpw. This link is maintained to preserve external references. Original Description OpenClaw before 2026.3.31 contains a symlink following vulnerability in SSH sandbox tar upload that allows remote...

CVE-2026-25895

FUXA is a web-based Process Visualization SCADA/HMI/Dashboard software. A path traversal vulnerability in FUXA allows an unauthenticated, remote attacker to write arbitrary files to arbitrary locations on the server filesystem. This affects FUXA through version 1.2.9. This issue has been patched ...

PT-2026-7186

Name of the Vulnerable Software and Affected Versions FUXA versions through 1.2.9 Description FUXA is a web-based Process Visualization SCADA/HMI/Dashboard software. A path traversal issue allows an unauthenticated, remote attacker to write arbitrary files to arbitrary locations on the server...

MiracleLinux 8 : rsync-3.1.3-14.el8.3 (AXSA:2022-3734:04)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3734:04 advisory. rsync: remote arbitrary files write inside the directories of connecting peers CVE-2022-29154 Tenable has extracted the preceding description block directly...

CVE-2025-13659

CVE-2025-13659 concerns Ivanti Endpoint Manager. Affected: Ivanti Endpoint Manager prior to 2024 SU4 SR1. Root cause: improper control of dynamically managed code resources. Impact: remote unauthenticated attacker can write arbitrary files on the server, potentially enabling remote code execution...

PT-2025-50086

Name of the Vulnerable Software and Affected Versions Ivanti Endpoint Manager versions prior to 2024 SU4 SR1 Description A flaw exists in Ivanti Endpoint Manager due to improper control of dynamically managed code resources. A remote, unauthenticated attacker can write arbitrary files on the...

Linux Distros Unpatched Vulnerability : CVE-2015-1194

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pax 1:20140703 allows remote attackers to write to arbitrary files via a symlink attack in an archive. CVE-2015-1194 Note that Nessus relies on the presence of...

The vulnerability in the visual integrated development environment for creating Mendix Studio Pro applications arises from incorrect restrictions on the path to the restricted access catalog. This allows attackers to write arbitrary files.

The vulnerability in the visual integrated development environment for creating Mendix Studio Pro applications is related to incorrect restrictions on the path to the restricted catalog during module installation. Exploiting this vulnerability allows a malicious actor to write arbitrary files...

The vulnerability of the EVLink WallBox software lies in the incorrect limitation of the path name to the restricted access catalog, allowing a violator to write arbitrary files.

The vulnerability of the EVLink WallBox software is related to incorrect restrictions on the path name to the restricted access catalog. Exploiting this vulnerability could allow a remote attacker to write arbitrary files...

The vulnerability of the bar files in the control panel of the software integration for IBM App Connect Enterprise allows a perpetrator to write any files into the file system.

The vulnerability of the bar files in the control panel of the IBM App Connect Enterprise software relates to incorrect path name restrictions for the restricted access directory. Exploiting this vulnerability could allow a malicious actor to write any files into the file system remotely...

The vulnerability of the config_dirs function in the NGINX Agent demon and the NGINX Instance Manager automation platform allows a hacker to write or overwrite any files they desire.

The vulnerability of the configdirs function in the NGINX Agent demon and the NGINX Instance Manager platform relates to the ability to load arbitrary files beyond the expected directory path. Exploiting this vulnerability allows a malicious actor to write or rewrite arbitrary files remotely...

PT-2024-10402 · Sangoma +2 · Asterisk +3

Name of the Vulnerable Software and Affected Versions: Asterisk versions prior to 18.24.2 Asterisk versions prior to 20.9.2 Asterisk versions prior to 21.4.2 Certified-Asterisk versions prior to 18.9-cert11 Certified-Asterisk versions prior to 20.7-cert2 Description: The issue is related to...

CVE-2024-5463

A vulnerability regarding buffer copy without checking the size of input 'Classic Buffer Overflow' has been found in the login component. This allows remote attackers to write specific files containing non-sensitive information and conduct limited denial-of-service attacks via unspecified vectors...

The vulnerability of the Microsoft Visual Studio software lies in the use of a name with an incorrect reference. This allows attackers to write arbitrary files into the system.

The vulnerability of the Microsoft Visual Studio software relates to the use of a name with an incorrect reference. Exploiting this vulnerability could allow a malicious actor to write arbitrary files into the system remotely...

PT-2023-5841 · Triangle Microworks · Triangle Microworks Scada Data Gateway

Name of the Vulnerable Software and Affected Versions: Triangle MicroWorks SCADA Data Gateway affected versions not specified Description: This issue allows remote attackers to write arbitrary files on affected installations, potentially enabling them to execute code in the context of root. The...

SUSE CVE-2013-2185

The readObject method in the DiskFileItem class in Apache Tomcat and JBoss Web, as used in Red Hat JBoss Enterprise Application Platform 6.1.0 and Red Hat JBoss Portal 6.0.0, allows remote attackers to write to arbitrary files via a NULL byte in a file name in a serialized instance, a similar iss...

SUSE CVE-2014-7169

GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or possibly have unknown other impact via a crafted environment, as demonstrated by vectors involving the...

rsync: remote arbitrary files write inside the directories of connecting peers

A flaw was found in rsync that is triggered by a victim rsync user/client connecting to a malicious rsync server. The server can copy and overwrite arbitrary files in the client's rsync target directory and subdirectories. This flaw allows a malicious server, or in some cases, another attacker wh...

OESA-2022-1629 gzip security update

gzip is a single-file/stream lossless data compression utility, where the resulting compressed file generally has the suffix .gz. Security Fixes: The vulnerability exists due to insufficient validation when handling filenames with two or more newlines. A remote attacker can force zgrep or xzgrep ...

apache-flink: directory traversal attack allows remote file writing through the REST API

Apache Flink 1.5.1 introduced a REST handler that allows you to write an uploaded file to an arbitrary location on the local file system, through a maliciously modified HTTP HEADER. The files can be written to any location accessible by Flink 1.5.1. All users should upgrade to Flink 1.11.3 or...