CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

RedhatCVE•added 2026/01/09 10:48 a.m.•5 views

CVE-2022-31584

The stonethree/s3label repository through 2019-08-14 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS7AI score0.00432EPSS

Exploits1References1

ATTACKERKB•added 2022/07/11 1:15 a.m.•3 views

CVE-2022-31584

The stonethree/s3label repository through 2019-08-14 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS5.3AI score0.00432EPSS

Exploits1References2

OSV•added 2022/07/11 1:15 a.m.•2 views

CVE-2022-31584

The stonethree/s3label repository through 2019-08-14 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS5.8AI score

Exploits0References1

Prion•added 2022/07/11 1:15 a.m.•18 views

Path traversal

The stonethree/s3label repository through 2019-08-14 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

6.4CVSS9.3AI score0.00432EPSS

Exploits1References1Affected Software1

CVE•added 2022/07/11 1:2 a.m.•59 views

CVE-2022-31584

The CVE-2022-31584 entry concerns the stonethree/s3label repository (GitHub) up to 2019-08-14, where absolute path traversal is possible due to unsafe use of Flask’s send_file. Connected sources corroborate it as a path traversal vulnerability in the file-serving logic, with no explicit remediati...

9.3CVSS9.2AI score0.00432EPSS

Exploits1References1Affected Software1