CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Veracode•added 2023/05/12 1:51 a.m.•17 views

Path Traversal

spring-boot-actuator-logview is vulnerable to Path Traversal. The vulnerability exists in the securityCheck function of LogViewEndpoint.java because it does not properly validate relative paths, allowing an attacker to access files outside the expected directory through the path such as /usr/outn...

5.3CVSS6.4AI score0.00369EPSS

Exploits0References2Affected Software1

NVD•added 2023/05/11 2:15 a.m.•6 views

CVE-2023-29986

spring-boot-actuator-logview 0.2.13 allows Directory Traversal to sibling directories via LogViewEndpoint.view...

5.3CVSS6.3AI score0.00369EPSS

Exploits0References1

Prion•added 2023/05/11 2:15 a.m.•11 views

Directory traversal

spring-boot-actuator-logview 0.2.13 allows Directory Traversal to sibling directories via LogViewEndpoint.view...

5CVSS5.2AI score0.00369EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/05/11 12:0 a.m.•13 views

CVE-2023-29986

spring-boot-actuator-logview 0.2.13 allows Directory Traversal to sibling directories via LogViewEndpoint.view...

5.6AI score0.00369EPSS

Exploits0References1

CVE•added 2023/05/11 12:0 a.m.•52 views

CVE-2023-29986

CVE-2023-29986 affects spring-boot-actuator-logview 0.2.13. The vulnerability is a Directory Traversal through LogViewEndpoint.view, enabling access to files outside the intended directory due to insufficient input validation. Documents indicate risk is a filesystem path traversal to sibling dire...

5.3CVSS5.2AI score0.00369EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by