GHSA-5rfv-3h3m-2j9c

Опубликовано: 12 нояб. 2025

Источник: github

Github: Не прошло ревью

CVSS4: 7.3

CVSS3: 8.4

Описание

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Algosec

Firewall

Analyzer on Linux, 64 bit allows Path Traversal, Code Injection.This issue affects Algosec

Firewall

Analyzer: A33.0 (up to build 320), A33.10 (up to build 210).

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Algosec

Firewall

Analyzer on Linux, 64 bit allows Path Traversal, Code Injection.This issue affects Algosec

Firewall

Analyzer: A33.0 (up to build 320), A33.10 (up to build 210).

Ссылки

EPSS

Процентиль: 28%

0.00099

Низкий

7.3 High

CVSS4

8.4 High

CVSS3

CVE ID

CVE-2025-12382

Дефекты

CWE-22

Связанные уязвимости

CVE-2025-12382

CVSS3: 8.8

nvd

3 месяца назад

Improper Limitation of a Pathname 'Path Traversal') vulnerability in Algosec Firewall Analyzer on Linux, 64 bit allows an authenticated user to upload files to a restricted directory leading to code injection. This issue affects Algosec Firewall Analyzer: A33.0 (up to build 320), A33.10 (up to build 210).

EPSS

Процентиль: 28%

0.00099

Низкий

7.3 High

CVSS4

8.4 High

CVSS3

CVE ID

CVE-2025-12382

Дефекты

CWE-22