Lucene search
K

5 matches found

EUVD
EUVD
added 2026/04/09 12:31 a.m.4 views

EUVD-2026-20765

ALEAPP Android Logs Events And Protobuf Parser through 3.4.0 contains a path traversal vulnerability in the NQVault.py artifact parser that uses attacker-controlled filenamefrom values from a database directly as the output filename, allowing arbitrary file writes outside the report output...

8.4CVSS6.5AI score0.00192EPSS
Exploits0References5
NVD
NVD
added 2026/04/08 10:16 p.m.5 views

CVE-2026-40027

ALEAPP Android Logs Events And Protobuf Parser through 3.4.0 contains a path traversal vulnerability in the NQVault.py artifact parser that uses attacker-controlled filenamefrom values from a database directly as the output filename, allowing arbitrary file writes outside the report output...

8.4CVSS0.00192EPSS
Exploits0References4
CVE
CVE
added 2026/04/08 9:35 p.m.14 views

CVE-2026-40027

ALEAPP (Android Logs Events And Protobuf Parser)

8.4CVSS6.5AI score0.00192EPSS
Exploits0References4
OSV
OSV
added 2026/04/08 9:35 p.m.2 views

CVE-2026-40027 ALEAPP NQ Vault Artifact Parser Path Traversal

ALEAPP Android Logs Events And Protobuf Parser through 3.4.0 contains a path traversal vulnerability in the NQVault.py artifact parser that uses attacker-controlled filenamefrom values from a database directly as the output filename, allowing arbitrary file writes outside the report output...

8.4CVSS6.5AI score0.00192EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.7 views

PT-2026-31464

ALEAPP Android Logs Events And Protobuf Parser through 3.4.0 contains a path traversal vulnerability in the NQ Vault.py artifact parser that uses attacker-controlled file name from values from a database directly as the output filename, allowing arbitrary file writes outside the report output...

8.4CVSS6.5AI score0.00192EPSS
Exploits0References5
Rows per page
Query Builder