CVE-2023-28371
CVE-2023-28371 affects Stellarium up to version 1.2, enabling arbitrary file writes via absolute pathnames or .. directory traversal. Connected advisories confirm the root cause is improper file write permissions within Stellarium’s handling of path traversal. Impact is high (potential data discl...