Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-5982

Опубликовано: 28 фев. 2017
Источник: ubuntu
Приоритет: medium
EPSS Высокий
CVSS2: 5
CVSS3: 7.5

Описание

Directory traversal vulnerability in the Chorus2 2.4.2 add-on for Kodi allows remote attackers to read arbitrary files via a %2E%2E%252e (encoded dot dot slash) in the image path, as demonstrated by image/image%3A%2F%2F%2e%2e%252fetc%252fpasswd.

РелизСтатусПримечание
artful

ignored

end of life
bionic

ignored

end of standard support, was needed
cosmic

ignored

end of life
devel

DNE

disco

ignored

end of life
eoan

ignored

end of life
esm-apps/bionic

needed

esm-apps/focal

not-affected

2:18.6+dfsg1-2ubuntu1
esm-apps/jammy

needed

esm-apps/noble

needs-triage

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was needed]
esm-infra/focal

DNE

focal

DNE

groovy

DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 99%
0.8642
Высокий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2017-5982

CVSS3: 7.5
nvd
почти 9 лет назад

Directory traversal vulnerability in the Chorus2 2.4.2 add-on for Kodi allows remote attackers to read arbitrary files via a %2E%2E%252e (encoded dot dot slash) in the image path, as demonstrated by image/image%3A%2F%2F%2e%2e%252fetc%252fpasswd.

debian логотип

CVE-2017-5982

CVSS3: 7.5
debian
почти 9 лет назад

Directory traversal vulnerability in the Chorus2 2.4.2 add-on for Kodi ...

github логотип

GHSA-4x55-4hhv-gr9v

CVSS3: 7.5
github
больше 3 лет назад

Directory traversal vulnerability in the Chorus2 2.4.2 add-on for Kodi allows remote attackers to read arbitrary files via a %2E%2E%252e (encoded dot dot slash) in the image path, as demonstrated by image/image%3A%2F%2F%2e%2e%252fetc%252fpasswd.

EPSS

Процентиль: 99%
0.8642
Высокий

5 Medium

CVSS2

7.5 High

CVSS3