exploitDog

GHSA-6pwm-f65f-3g86

Опубликовано: 05 дек. 2024

Источник: github

Github: Не прошло ревью

CVSS4: 4.1

CVSS3: 5

Описание

In OpenBSD 7.5 before errata 009 and OpenBSD 7.4 before errata 022, exclude any '/' in readdir name validation to avoid unexpected directory traversal on untrusted file systems.

In OpenBSD 7.5 before errata 009 and OpenBSD 7.4 before errata 022, exclude any '/' in readdir name validation to avoid unexpected directory traversal on untrusted file systems.

Ссылки

EPSS

Процентиль: 32%

0.00124

Низкий

4.1 Medium

CVSS4

5 Medium

CVSS3

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2024-10933

CVSS3: 5

nvd

около 1 года назад

In OpenBSD 7.5 before errata 009 and OpenBSD 7.4 before errata 022, exclude any '/' in readdir name validation to avoid unexpected directory traversal on untrusted file systems.

EPSS

Процентиль: 32%

0.00124

Низкий

4.1 Medium

CVSS4

5 Medium

CVSS3

CVE ID

Дефекты

CWE-22