Lucene search
Ubuntu.comUB:CVE-2023-46303HistoryOct 22, 2023 - 12:00 a.m.
CVE-2023-46303
2023-10-2200:00:00
ubuntu.com
ubuntu.com
18
cve-2023-46303
calibre
html_input.py
vulnerability
unix
resources
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS
0.001
Percentile
17.8%
link_to_local_path in ebooks/conversion/plugins/html_input.py in calibre
before 6.19.0 can, by default, add resources outside of the document root.
Related
prion
prion
Design/Logic Flaw
2023-10-22 18:15:00
osv
osv
CVE-2023-46303
2023-10-22 18:15:08
calibre - security update
2024-09-02 00:00:00
cvelist
cvelist
CVE-2023-46303
2023-10-22 00:00:00
nvd
nvd
CVE-2023-46303
2023-10-22 18:15:08
debiancve
debiancve
CVE-2023-46303
2023-10-22 18:15:08
veracode
veracode
Improper Authorization
2023-10-27 07:09:15
vulnrichment
vulnrichment
CVE-2023-46303
2023-10-22 00:00:00
cve
cve
CVE-2023-46303
2023-10-22 18:15:08
nessus
nessus
Debian dla-3862 : calibre - security update
2024-09-02 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3862-1)
2024-09-03 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS
0.001
Percentile
17.8%
Related for UB:CVE-2023-46303