Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2023/08/29 9:25 p.m.37 views

CVE-2023-39810

A flaw was found in the BusyBox tool. This issue occurs in the cpio command of BusyBox and may allow attackers to execute a directory traversal. If untrusted archives are extracted, this can result in files written outside of the destination directory or files being overwritten that contain...

7.3CVSS6.7AI score0.00704EPSS
Exploits0References4
securelist
securelist
added 2021/03/04 5:20 p.m.443 views

Zero-day vulnerabilities in Microsoft Exchange Server

What happened? On March 2, 2021 several companies released reports about in-the-wild exploitation of zero-day vulnerabilities inside Microsoft Exchange Server. The following vulnerabilities allow an attacker to compromise a vulnerable Microsoft Exchange Server. As a result, an attacker will gain...

7.5CVSS1.3AI score0.99999EPSS
Exploits66
ubuntucve
ubuntucve
added 2020/09/04 8:15 p.m.42 views

CVE-2019-20916

The pip package before 19.2 for Python allows Directory Traversal when a URL is given in an install command, because a Content-Disposition header can have ../ in a filename, as demonstrated by overwriting the /root/.ssh/authorizedkeys file. This occurs in downloadhttpurl in internal/download.py...

7.5CVSS6.9AI score0.03028EPSS
Exploits1References6
openvas
openvas
added 2008/09/04 12:0 a.m.16 views

FreeBSD Security Advisory (FreeBSD-SA-06:02.ee.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:02.ee.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

2.1CVSS7.1AI score0.00362EPSS
Exploits0References2
Rows per page
Query Builder