Опубликовано: 24 апр. 2017
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.8
CVSS3: 7.8
Описание
Directory traversal vulnerability in unzip/extract feature in eXtplorer 2.1.9 allows remote attackers to execute arbitrary files via a .. (dot dot) in an archive file.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-apps/xenial | released | 2.1.0b6+dfsg.3-4+deb7u4ubuntu0.16.04.1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [2.1.0b6+dfsg.3-4+deb7u4build0.14.04.1]] |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| trusty | released | 2.1.0b6+dfsg.3-4+deb7u4build0.14.04.1 |
| trusty/esm | DNE | trusty was released [2.1.0b6+dfsg.3-4+deb7u4build0.14.04.1] |
| upstream | needs-triage | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE |
Показывать по
10
EPSS
Процентиль: 87%
0.03218
Низкий
6.8 Medium
CVSS2
7.8 High
CVSS3
Связанные уязвимости
CVSS3: 7.8
nvd
почти 9 лет назад
Directory traversal vulnerability in unzip/extract feature in eXtplorer 2.1.9 allows remote attackers to execute arbitrary files via a .. (dot dot) in an archive file.
CVSS3: 7.8
debian
почти 9 лет назад
Directory traversal vulnerability in unzip/extract feature in eXtplore ...
CVSS3: 7.8
github
больше 3 лет назад
Directory traversal vulnerability in unzip/extract feature in eXtplorer 2.1.9 allows remote attackers to execute arbitrary files via a .. (dot dot) in an archive file.
EPSS
Процентиль: 87%
0.03218
Низкий
6.8 Medium
CVSS2
7.8 High
CVSS3