Lucene search
K

7 matches found

OSV
OSV
added 2026/03/06 10:16 p.m.5 views

AZL-79532 CVE-2026-27139 affecting package golang 1.18.8-10

On Unix platforms, when listing the contents of a directory using File.ReadDir or File.Readdir the returned FileInfo could reference a file outside of the Root in which the File was opened. The impact of this escape is limited to reading metadata provided by lstat from arbitrary locations on the...

2.5CVSS5.9AI score0.00201EPSS
Exploits0References1
NVD
NVD
added 2026/03/06 10:16 p.m.4 views

CVE-2026-27139

On Unix platforms, when listing the contents of a directory using File.ReadDir or File.Readdir the returned FileInfo could reference a file outside of the Root in which the File was opened. The impact of this escape is limited to reading metadata provided by lstat from arbitrary locations on the...

2.5CVSS0.00201EPSS
Exploits0References4
OSV
OSV
added 2026/01/22 5:16 a.m.6 views

AZL-75014 CVE-2025-71176 affecting package pytest 7.4.0-2

pytest through 9.0.2 on UNIX relies on directories with the /tmp/pytest-of-user name pattern, which allows local users to cause a denial of service or possibly gain privileges...

6.8CVSS5.8AI score0.0014EPSS
Exploits0References1
RustSec
RustSec
added 2024/12/18 12:0 p.m.6 views

Malicious plugin names, recipients, or identities can cause arbitrary binary execution

A plugin name containing a path separator may allow an attacker to execute an arbitrary binary. Such a plugin name can be provided through an attacker-controlled input to the following age APIs when the plugin feature flag is enabled: - age::plugin::Identity::fromstr or equivalently str::parse:: ...

7.3AI score
Exploits0Affected Software1
Mageia
Mageia
added 2020/01/17 10:16 a.m.46 views

Updated e2fsprogs packages fix security vulnerability

Updated e2fsprogs packages fix security vulnerability: A code execution vulnerability in the directory rehashing functionality CVE-2019-5188. For other fixes in this update, see the referenced release info...

7.5CVSS1.9AI score0.01025EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2017/07/18 7:0 p.m.19 views

CVE-2017-11421

Removed by vendor...

7.8CVSS8AI score0.00628EPSS
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.62 views

Brio Unix Directory Traversal

The Brio web application interface has a directory traversal in the component SPDX-FileCopyrightText: 2003 Chris Foster Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only v. 1.00 last upda...

7.3AI score
Exploits0
Rows per page
Query Builder