exploitDog

CVE-2025-49466

Опубликовано: 05 июн. 2025

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 5.8

Описание

aerc before 93bec0d allows directory traversal in commands/msgview/open.go because of direct path concatenation of the name of an attachment part,

Релиз	Статус	Примечание
devel	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	needs-triage
jammy	needs-triage
noble	needs-triage
oracular	ignored	end of life, was needs-triage
plucky	ignored	end of life, was needs-triage
questing	needs-triage
upstream	needs-triage

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2025-49466

EPSS

Процентиль: 51%

0.00277

Низкий

5.8 Medium

CVSS3

Связанные уязвимости

CVE-2025-49466

CVSS3: 5.8

nvd

8 месяцев назад

aerc before 93bec0d allows directory traversal in commands/msgview/open.go because of direct path concatenation of the name of an attachment part,

CVE-2025-49466

CVSS3: 5.8

debian

8 месяцев назад

aerc before 93bec0d allows directory traversal in commands/msgview/ope ...

GHSA-2f2j-p95m-cpgc

CVSS3: 5.8

github

8 месяцев назад

aerc before 93bec0d allows directory traversal in commands/msgview/open.go because of direct path concatenation of the name of an attachment part,

EPSS

Процентиль: 51%

0.00277

Низкий

5.8 Medium

CVSS3