Lucene search
K

4 matches found

NVD
NVD
added 2026/04/23 9:16 p.m.6 views

CVE-2026-6941

radare2 prior to 6.1.4 contains a path traversal vulnerability in its project notes handling that allows attackers to read or write files outside the configured project directory by importing a malicious .zrp archive containing a symlinked notes.txt file. Attackers can craft a .zrp archive with a...

7.8CVSS0.00198EPSS
Exploits1References3
AlpineLinux
AlpineLinux
added 2026/04/23 8:39 p.m.4 views

CVE-2026-6941

radare2 prior to 6.1.4 contains a path traversal vulnerability in its project notes handling that allows attackers to read or write files outside the configured project directory by importing a malicious .zrp archive containing a symlinked notes.txt file. Attackers can craft a .zrp archive with a...

7.8CVSS5.5AI score0.00198EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/04/23 8:39 p.m.6 views

CVE-2026-6941 radare2 < 6.1.4 Project Notes Path Traversal via Symlink

radare2 prior to 6.1.4 contains a path traversal vulnerability in its project notes handling that allows attackers to read or write files outside the configured project directory by importing a malicious .zrp archive containing a symlinked notes.txt file. Attackers can craft a .zrp archive with a...

6.9CVSS5.5AI score0.00198EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2026/04/23 8:39 p.m.3 views

CVE-2026-6941

radare2 prior to 6.1.4 contains a path traversal vulnerability in its project notes handling that allows attackers to read or write files outside the configured project directory by importing a malicious .zrp archive containing a symlinked notes.txt file. Attackers can craft a .zrp archive with a...

7.8CVSS5.5AI score0.00198EPSS
Exploits1
Rows per page
Query Builder