Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-42713

Malicious code in bioql PyPI...

8.1CVSS6.3AI score0.00553EPSS
Exploits0References2
OSV
OSV
added 2024/12/24 4:15 a.m.1 views

DEBIAN-CVE-2024-47515

A vulnerability was found in Pagure. Support of symbolic links during repository archiving of repositories allows the disclosure of local files. This flaw allows a malicious user to take advantage of the Pagure instance...

8.1CVSS5.2AI score0.00553EPSS
Exploits0References1
OSV
OSV
added 2024/12/24 4:15 a.m.6 views

CVE-2024-47515

A vulnerability was found in Pagure. Support of symbolic links during repository archiving of repositories allows the disclosure of local files. This flaw allows a malicious user to take advantage of the Pagure instance...

8.1CVSS6.3AI score0.00553EPSS
Exploits0References2
OSV
OSV
added 2024/12/24 4:15 a.m.1 views

UBUNTU-CVE-2024-47515

A vulnerability was found in Pagure. Support of symbolic links during repository archiving of repositories allows the disclosure of local files. This flaw allows a malicious user to take advantage of the Pagure instance...

8.1CVSS5.7AI score0.00553EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/12/24 3:26 a.m.20 views

CVE-2024-47515 Pagure: generate_archive() follows symbolic links in temporary clones

A vulnerability was found in Pagure. Support of symbolic links during repository archiving of repositories allows the disclosure of local files. This flaw allows a malicious user to take advantage of the Pagure instance...

8.1CVSS0.00553EPSS
Exploits0References2
CVE
CVE
added 2024/12/24 3:26 a.m.60 views

CVE-2024-47515

Pagure CVE-2024-47515 involves generate_archive() following symbolic links in temporary clones, enabling disclosure of local files outside repository boundaries. Ubuntu (USN-7984-1) and Debian (DLA-4390-1) advisories reference Pagure fixes; Debian notes version 5.11.3+dfsg-1+deb11u1, Ubuntu patch...

8.1CVSS7.7AI score0.00553EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/12/24 12:0 a.m.1 views

PT-2024-32637 · Pagure +1 · Pagure +1

Name of the Vulnerable Software and Affected Versions: Pagure affected versions not specified Description: A vulnerability was found in Pagure, where the support of symbolic links during repository archiving allows the disclosure of local files. This flaw enables a malicious user to exploit the...

8.1CVSS6.2AI score0.00553EPSS
Exploits0References18
SUSE CVE
SUSE CVE
added 2024/10/02 2:51 a.m.2 views

SUSE CVE-2024-47515

A vulnerability was found in Pagure. Support of symbolic links during repository archiving of repositories allows the disclosure of local files. This flaw allows a malicious user to take advantage of the Pagure instance...

8.1CVSS6.3AI score0.00553EPSS
Exploits0References3
Rows per page
Query Builder