CVE-2020-36647

Опубликовано: 08 янв. 2023

Источник: nvd

CVSS3: 5.5

CVSS3: 5.3

CVSS2: 5.2

EPSS Низкий

Описание

A vulnerability classified as critical has been found in YunoHost-Apps transmission_ynh. Affected is an unknown function of the file conf/nginx.conf. The manipulation leads to path traversal. The patch is identified as f136dfd44eda128129e5fd2d850a3a3c600e6a4a. It is recommended to apply a patch to fix this issue. VDB-217638 is the identifier assigned to this vulnerability.

Ссылки

https://github.com/YunoHost-Apps/transmission_ynh/commit/f136dfd44eda128129e5fd2d850a3a3c600e6a4a
Patch
https://github.com/YunoHost-Apps/transmission_ynh/pull/75
Patch
https://vuldb.com/?ctiid.217638
Permissions Required
Third Party Advisory
https://vuldb.com/?id.217638
Permissions Required
Third Party Advisory
https://github.com/YunoHost-Apps/transmission_ynh/commit/f136dfd44eda128129e5fd2d850a3a3c600e6a4a
Patch
https://github.com/YunoHost-Apps/transmission_ynh/pull/75
Patch
https://vuldb.com/?ctiid.217638
Permissions Required
Third Party Advisory
https://vuldb.com/?id.217638
Permissions Required
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:yunohost:transmission_ynh:*:*:*:*:*:*:*:*

Версия до 10-25-2020 (исключая)

EPSS

Процентиль: 60%

0.00401

Низкий

5.5 Medium

CVSS3

5.3 Medium

CVSS3

5.2 Medium

CVSS2

Дефекты

CWE-22

Связанные уязвимости

GHSA-wvq3-mfmm-c65c

CVSS3: 5.3

github

около 3 лет назад

A vulnerability classified as critical has been found in YunoHost-Apps transmission_ynh. Affected is an unknown function of the file conf/nginx.conf. The manipulation leads to path traversal. The name of the patch is f136dfd44eda128129e5fd2d850a3a3c600e6a4a. It is recommended to apply a patch to fix this issue. VDB-217638 is the identifier assigned to this vulnerability.

EPSS

Процентиль: 60%

0.00401

Низкий

5.5 Medium

CVSS3

5.3 Medium

CVSS3

5.2 Medium

CVSS2

Дефекты

CWE-22