Lucene search
K

58 matches found

NVD
NVD
added 2022/09/16 6:15 p.m.24 views

CVE-2022-39002

Double free vulnerability in the storage module. Successful exploitation of this vulnerability will cause the memory to be freed twice...

9.8CVSS0.00531EPSS
Exploits0References2
OSV
OSV
added 2022/09/16 6:15 p.m.4 views

CVE-2022-39002

Double free vulnerability in the storage module. Successful exploitation of this vulnerability will cause the memory to be freed twice...

9.8CVSS5.8AI score0.00531EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/09/16 6:15 p.m.2 views

CVE-2022-39002

Double free vulnerability in the storage module. Successful exploitation of this vulnerability will cause the memory to be freed twice...

9.8CVSS7.3AI score0.00531EPSS
Exploits0References3
Prion
Prion
added 2022/09/16 6:15 p.m.21 views

Double free

Double free vulnerability in the storage module. Successful exploitation of this vulnerability will cause the memory to be freed twice...

7.5CVSS9.3AI score0.00531EPSS
Exploits0References2Affected Software3
CVE
CVE
added 2022/09/16 12:0 a.m.58 views

CVE-2022-39002

CVE-2022-39002 describes a double free in the storage module, causing memory to be freed twice. NVD assigns CVSS 3.1 base 9.8 (CRITICAL, NETWORK/LOW complexity, no user interaction). Connected sources corroborate a storage-module double-free vulnerability; one document lists affected Huawei EMUI ...

9.8CVSS9.3AI score0.00531EPSS
Exploits0References2Affected Software3
Positive Technologies
Positive Technologies
added 2022/09/16 12:0 a.m.5 views

PT-2022-24659 · Huawei · Emui +2

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to a double free vulnerability in the storage module. This means that memory is freed twice, which can lead to unexpected behavior...

9.8CVSS9.2AI score0.00531EPSS
Exploits0References4
CVE
CVE
added 2022/01/07 10:39 p.m.54 views

CVE-2021-40020

CVE-2021-40020 describes an Out-of-bounds array read in the smartphone security storage module, affecting Huawei smartphone devices. The underlying cause is an out-of-bounds read in the secure storage component, with potential impact on service confidentiality. Multiple sources reiterate the same...

7.5CVSS7.5AI score0.00672EPSS
Exploits0References1Affected Software2
NVD
NVD
added 2021/12/06 7:15 p.m.23 views

CVE-2021-43800

Wiki.js is a wiki app built on Node.js. Prior to version 2.5.254, directory traversal outside of Wiki.js context is possible when a storage module with local asset cache fetching is enabled on a Windows host. A malicious user can potentially read any file on the file system by crafting a special...

7.5CVSS0.01738EPSS
Exploits0References3
OSV
OSV
added 2021/12/06 7:15 p.m.15 views

CVE-2021-43800

Wiki.js is a wiki app built on Node.js. Prior to version 2.5.254, directory traversal outside of Wiki.js context is possible when a storage module with local asset cache fetching is enabled on a Windows host. A malicious user can potentially read any file on the file system by crafting a special...

7.5CVSS6.5AI score
Exploits0References3
Prion
Prion
added 2021/12/06 7:15 p.m.23 views

Directory traversal

Wiki.js is a wiki app built on Node.js. Prior to version 2.5.254, directory traversal outside of Wiki.js context is possible when a storage module with local asset cache fetching is enabled on a Windows host. A malicious user can potentially read any file on the file system by crafting a special...

4.3CVSS7.4AI score0.01738EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2021/12/06 6:50 p.m.20 views

CVE-2021-43800 Asset directory traversal with some storage modules on Windows

Wiki.js is a wiki app built on Node.js. Prior to version 2.5.254, directory traversal outside of Wiki.js context is possible when a storage module with local asset cache fetching is enabled on a Windows host. A malicious user can potentially read any file on the file system by crafting a special...

7.5CVSS7.6AI score0.01738EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/12/06 12:0 a.m.6 views

Wiki.js 路径遍历漏洞

Wiki.js is Requarks.io team of a set of Node.js-based and written in JavaScript language open source Wiki software . A path traversal vulnerability exists in Wiki.js before 2.5.254, which allows directory traversal outside of the Wiki.js context when a storage module with local asset cache fetchi...

7.5CVSS5.6AI score0.01738EPSS
Exploits0References4
OSV
OSV
added 2020/10/05 3:15 p.m.17 views

CVE-2020-15236

In Wiki.js before version 2.5.151, directory traversal outside of Wiki.js context is possible when a storage module with local asset cache fetching is enabled. A malicious user can potentially read any file on the file system by crafting a special URL that allows for directory traversal. This is...

7.5CVSS6.6AI score
Exploits0References2
Prion
Prion
added 2020/10/05 3:15 p.m.15 views

Directory traversal

In Wiki.js before version 2.5.151, directory traversal outside of Wiki.js context is possible when a storage module with local asset cache fetching is enabled. A malicious user can potentially read any file on the file system by crafting a special URL that allows for directory traversal. This is...

5CVSS7.4AI score0.01766EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/10/05 2:55 p.m.53 views

CVE-2020-15236

CVE-2020-15236 affects Wiki.js prior to 2.5.151, enabling directory traversal when a storage module with local asset cache (e.g., Local File System or Git) is active and URL traversal isn’t blocked. The issue allowed reading arbitrary filesystem files via crafted URLs. The fix (commit 084dcd69d15...

8.6CVSS7.6AI score0.01766EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/10/05 2:55 p.m.24 views

CVE-2020-15236 Directory Traversal in Wiki.js

In Wiki.js before version 2.5.151, directory traversal outside of Wiki.js context is possible when a storage module with local asset cache fetching is enabled. A malicious user can potentially read any file on the file system by crafting a special URL that allows for directory traversal. This is...

8.6CVSS8.4AI score0.01766EPSS
Exploits0References2
CNVD
CNVD
added 2015/06/04 12:0 a.m.3 views

Drupal Storage API Module Access Bypass Vulnerability

Drupal is a free, open-source content management system developed in PHP and maintained by the Drupal community.Storage API is one of the framework modules for managing file storage and serving. An access bypass vulnerability exists in the Drupal Storage API module. An attacker can exploit this...

7.5CVSS6.9AI score0.01476EPSS
Exploits0References1
OSV
OSV
added 2013/09/27 10:8 a.m.3 views

DEBIAN-CVE-2013-5942

Graphite 0.9.5 through 0.9.10 uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object, related to 1 remotestorage.py, 2 storage.py, 3 render/datalib.py, and 4 whitelist/views.py, a different vulnerability than CVE-2013-5093...

6.8CVSS8.1AI score0.02106EPSS
Exploits0References1
Rows per page
Query Builder