Lucene search
Veracode Vulnerability DatabaseVERACODE:3572HistoryFeb 13, 2017 - 2:05 a.m.
Directory Traversal
2017-02-1302:05:43
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.004 Low
EPSS
Percentile
74.5%
rubyzip is vulnerable to directory traversals. A malicious user can prepend ../ to the file’s directory path to traverse the directory to create and overwrite arbitrary files.
Related
nessus
nessus
Debian DLA-846-1 : libzip-ruby security update
2017-03-07 00:00:00
openSUSE Security Update : rubygem-rubyzip (openSUSE-2017-900)
2017-08-10 00:00:00
Debian DSA-3801-1 : ruby-zip - security update
2017-03-06 00:00:00
debian
debian
[SECURITY] [DSA 3801-1] ruby-zip security update
2017-03-04 13:59:24
[SECURITY] [DLA 846-1] libzip-ruby security update
2017-03-06 22:03:29
[SECURITY] [DSA 3801-1] ruby-zip security update
2017-03-04 13:59:24
osv
osv
ruby-zip - security update
2017-03-04 00:00:00
libzip-ruby - security update
2017-03-06 00:00:00
Directory traversal vulnerability in RubyZip
2017-10-24 18:33:35
mageia
mageia
Updated ruby-rubyzip packages fix security vulnerability
2017-08-13 16:17:41
openvas
openvas
Debian: Security Advisory (DLA-846-1)
2018-01-11 00:00:00
Mageia: Security Advisory (MGASA-2017-0264)
2022-01-28 00:00:00
Debian Security Advisory DSA 3801-1 (ruby-zip - security update)
2017-03-04 00:00:00
debiancve
debiancve
CVE-2017-5946
2017-02-27 07:59:00
nvd
nvd
CVE-2017-5946
2017-02-27 07:59:00
cvelist
cvelist
CVE-2017-5946
2017-02-27 07:25:00
cve
cve
CVE-2017-5946
2017-02-27 07:59:00
ubuntucve
ubuntucve
CVE-2017-5946
2017-02-27 00:00:00
github
github
Directory traversal vulnerability in RubyZip
2017-10-24 18:33:35
redhatcve
redhatcve
CVE-2017-5946
2017-03-01 15:19:25
prion
prion
Directory traversal
2017-02-27 07:59:00
veracode
veracode
Directory Traversal
2019-01-15 09:26:53
Directory Traversal
2018-06-19 07:25:37