Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2011-4350

Опубликовано: 26 нояб. 2019
Источник: debian
EPSS Средний

Описание

Yaws 1.91 has a directory traversal vulnerability in the way certain URLs are processed. A remote authenticated user could use this flaw to obtain content of arbitrary local files via specially-crafted URL request.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
yawsfixed1.91-2package
yawsnot-affectedlennypackage
yawsnot-affectedsqueezepackage

EPSS

Процентиль: 96%
0.25878
Средний

Связанные уязвимости

ubuntu логотип

CVE-2011-4350

CVSS3: 6.5
ubuntu
около 6 лет назад

Yaws 1.91 has a directory traversal vulnerability in the way certain URLs are processed. A remote authenticated user could use this flaw to obtain content of arbitrary local files via specially-crafted URL request.

nvd логотип

CVE-2011-4350

CVSS3: 6.5
nvd
около 6 лет назад

Yaws 1.91 has a directory traversal vulnerability in the way certain URLs are processed. A remote authenticated user could use this flaw to obtain content of arbitrary local files via specially-crafted URL request.

github логотип

GHSA-8xpm-277g-mcr3

CVSS3: 6.5
github
почти 4 года назад

Yaws 1.91 has a directory traversal vulnerability in the way certain URLs are processed. A remote authenticated user could use this flaw to obtain content of arbitrary local files via specially-crafted URL request.

EPSS

Процентиль: 96%
0.25878
Средний