Lucene search
+L

144 matches found

CNNVD
CNNVD
added 2023/01/11 12:0 a.m.6 views

AMD Secure Processor(ASP) 安全漏洞

AMD Secure Processor ASP is a standalone ARM Coretex-A5 chip from UltraMicroelectronics AMD. AMD Secure Processor ASP suffers from a security vulnerability that stems from the fact that TOCTOU may allow a physical attacker to write outside of buffer boundaries, which could result in loss of...

5.7CVSS6AI score0.00179EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/12/27 12:0 a.m.7 views

tar-utils 路径遍历漏洞

tar-utils is a set of tar utilities from the go-ipfs codebase by the individual developer Whyrusleeping. A path traversal vulnerability exists in tar-utils, which stems from an incorrect path, where an archive file containing a relative file path could result in a file being written or overwritte...

9.1CVSS8.2AI score0.01023EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/11/08 9:25 a.m.5 views

kernel: KVM: cmpxchg_gpte can write to pfns outside the userspace region

A flaw was found in KVM. When updating a guest's page table entry, vmpgoff was improperly used as the offset to get the page's pfn. As vaddr and vmpgoff are controllable by user-mode processes, this flaw allows unprivileged local users on the host to write outside the userspace region and...

7.8CVSS6.6AI score0.00394EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2022/02/09 11:53 p.m.43 views

Out of bounds write in TFLite

Impact An attacker can craft a TFLite model that would cause a write outside of bounds of an array in TFLite. In fact, the attacker can override the linked list used by the memory allocator. This can be leveraged for an arbitrary write primitive under certain conditions. Patches We have patched t...

8.8CVSS3.5AI score0.0054EPSS
Exploits0References6Affected Software3
OSV
OSV
added 2021/09/14 1:15 a.m.3 views

ALPINE-CVE-2021-41072

squashfsopendir in unsquash-2.c in Squashfs-Tools 4.5 allows Directory Traversal, a different vulnerability than CVE-2021-40153. A squashfs filesystem that has been crafted to include a symbolic link and then contents under the same filename in a filesystem can cause unsquashfs to first create th...

8.1CVSS7AI score0.02296EPSS
Exploits1References1
OSV
OSV
added 2021/08/27 3:15 p.m.4 views

ALPINE-CVE-2021-40153

squashfsopendir in unsquash-1.c in Squashfs-Tools 4.5 stores the filename in the directory entry; this is then used by unsquashfs to create the new file during the unsquash. The filename is not validated for traversal outside of the destination directory, and thus allows writing to locations...

8.1CVSS6.9AI score0.025EPSS
Exploits1References1
OSV
OSV
added 2021/08/27 3:15 p.m.7 views

AZL-7463 CVE-2021-40153 affecting package squashfs-tools for versions less than 4.5.1-1

squashfsopendir in unsquash-1.c in Squashfs-Tools 4.5 stores the filename in the directory entry; this is then used by unsquashfs to create the new file during the unsquash. The filename is not validated for traversal outside of the destination directory, and thus allows writing to locations...

8.1CVSS6.6AI score0.025EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2021/07/28 12:0 a.m.11 views

PT-2021-12081 · Github.Com/Whyrusleeping/Tar Utils +3 · Github.Com/Whyrusleeping/Tar-Utils +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is caused by improper path sanitization, allowing archives with relative file paths to write or overwrite files outside the intended directory...

9.1CVSS6.9AI score0.01023EPSS
Exploits0References11
OSV
OSV
added 2021/05/07 3:15 p.m.35 views

UBUNTU-CVE-2021-29488

SABnzbd is an open source binary newsreader. A vulnerability was discovered in SABnzbd that could trick the filesystem.renamer function into writing downloaded files outside the configured Download Folder via malicious PAR2 files. A patch was released as part of SABnzbd 3.2.1RC1. As a workaround,...

5.3CVSS5.8AI score0.00919EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2021/03/04 12:0 a.m.4 views

PT-2021-16921 · Joomla · Joomla!

Name of the Vulnerable Software and Affected Versions: Joomla! versions 3.0.0 through 3.9.24 Description: An issue was discovered where extracting a specifically crafted zip package could write files outside of the intended path. Recommendations: For Joomla! versions 3.0.0 through 3.9.24, update ...

5.5CVSS6.8AI score0.01115EPSS
Exploits0References8
Zero Day Initiative
Zero Day Initiative
added 2020/03/12 12:0 a.m.34 views

Microsoft Windows CreateXlateObject Out-Of-Bounds Write Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

8.8CVSS5.3AI score0.00962EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/09/10 12:0 a.m.3 views

PT-2019-6092 · Unknown +9 · Squashfs-Tools +9

Name of the Vulnerable Software and Affected Versions: Squashfs-Tools version 4.5 Description: The issue is related to the squashfs opendir function in the unsquash-1.c component of Squashfs-Tools. This function stores the filename in the directory entry, which is then used by unsquashfs to creat...

8.1CVSS6.5AI score0.0691EPSS
Exploits2References105
Positive Technologies
Positive Technologies
added 2019/07/17 12:0 a.m.2 views

PT-2019-11751 · Jenkins · Jenkins

Name of the Vulnerable Software and Affected Versions: Jenkins versions 2.185 and earlier Jenkins LTS versions 2.176.1 and earlier Description: A path traversal issue allows attackers with Job/Configure permission to define a file parameter with a file name outside the intended directory. This...

6.5CVSS6.6AI score0.10225EPSS
Exploits1References13
OSV
OSV
added 2019/04/22 12:0 a.m.3 views

UBUNTU-CVE-2019-3902

A flaw was found in Mercurial before 4.9. It was possible to use symlinks and subrepositories to defeat Mercurial's path-checking logic and write files outside a repository...

5.9CVSS6.4AI score0.01413EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2018/11/05 2:57 p.m.7 views

glusterfs: Files can be renamed outside volume

A flaw was found in RPC request using gfs3renamereq in glusterfs server. An authenticated attacker could use this flaw to write to a destination outside the gluster volume...

6.5CVSS7.3AI score0.02111EPSS
Exploits0References4
CNVD
CNVD
added 2018/09/06 12:0 a.m.4 views

Red Hat glusterfs server RPC request processor component reset vulnerability

Red Hat glusterfs server is an open source distributed file system from Red Hat Red Hat. The system is mainly for media streaming , data analysis and other data and bandwidth intensive tasks to create large-scale distributed storage solutions. A security vulnerability exists in the 'gfs3renamereq...

6.5CVSS7.4AI score0.02111EPSS
Exploits0References1
Prion
Prion
added 2018/09/04 4:29 p.m.21 views

Design/Logic Flaw

A flaw was found in RPC request using gfs3renamereq in glusterfs server. An authenticated attacker could use this flaw to write to a destination outside the gluster volume...

4CVSS7AI score0.02111EPSS
Exploits0References9Affected Software7
OSV
OSV
added 2018/09/04 4:29 p.m.5 views

UBUNTU-CVE-2018-10930

A flaw was found in RPC request using gfs3renamereq in glusterfs server. An authenticated attacker could use this flaw to write to a destination outside the gluster volume...

6.5CVSS6.9AI score0.02111EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2018/09/04 6:25 a.m.7 views

glusterfs: Files can be renamed outside volume

A flaw was found in RPC request using gfs3renamereq in glusterfs server. An authenticated attacker could use this flaw to write to a destination outside the gluster volume...

6.5CVSS7.3AI score0.02111EPSS
Exploits0References4
Cvelist
Cvelist
added 2018/03/01 7:0 p.m.24 views

CVE-2017-14804 package builds could use directory traversal to write outside of target area

The build package before 20171128 did not check directory names during extraction of build results that allowed untrusted builds to write outside of the target system,allowing escape out of buildroots...

9.9CVSS7AI score0.01744EPSS
Exploits0References3
Rows per page
Query Builder