Lucene search
K

5 matches found

CNNVD
CNNVD
added 2025/09/09 12:0 a.m.4 views

MONAI 路径遍历漏洞

MONAI is a medical imaging AI toolkit open-sourced by Project MONAI. A path traversal vulnerability exists in MONAI 1.5.0 and earlier versions, which stems from improper handling of the extractall function and can lead to system file overwrites...

8.8CVSS6.4AI score0.00568EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2025/08/11 7:49 a.m.4 views

setuptools: Path Traversal Vulnerability in setuptools PackageIndex

A path traversal vulnerability in the Python setuptools library allows attackers with limited system access to write files outside the intended temporary directory by manipulating package download URLs. This flaw bypasses basic filename sanitization and can lead to unauthorized overwrites of...

8.8CVSS7.2AI score0.01479EPSS
Exploits4References8
RedHat Linux
RedHat Linux
added 2025/07/15 1:6 a.m.5 views

setuptools: Path Traversal Vulnerability in setuptools PackageIndex

A path traversal vulnerability in the Python setuptools library allows attackers with limited system access to write files outside the intended temporary directory by manipulating package download URLs. This flaw bypasses basic filename sanitization and can lead to unauthorized overwrites of...

8.8CVSS7.2AI score0.01479EPSS
Exploits4References8
RedHat Linux
RedHat Linux
added 2020/09/15 4:32 p.m.4 views

librepo: missing path validation in repomd.xml may lead to directory traversal

A flaw was found in librepo. A directory traversal vulnerability was found where it failed to sanitize paths in remote repository metadata. An attacker controlling a remote repository may be able to copy files outside of the destination directory on the targeted system via path traversal. This fl...

8.5CVSS7.1AI score0.02526EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2020/07/15 12:0 a.m.3 views

The vulnerability of the Secdo security incident investigation software arises from incorrect default access settings, which allow attackers to elevate their privileges and re-write system files.

The vulnerability of the Secdo security incident investigation software is related to incorrect default access settings for the folder C:\Programdata\Secdo\Logs. Exploiting this vulnerability allows an attacker to increase their privileges and overwrite system files...

7.8CVSS7.2AI score0.00254EPSS
Exploits0References3
Rows per page
Query Builder