Количество 8
Количество 8
BDU:2025-13871
Уязвимость набора библиотек OTP языка программирования Erlang, связанная с неверным ограничением имени пути к каталогу с ограниченным доступом, позволяющая нарушителю записывать произвольные файлы в систему
CVE-2025-4748
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Erlang OTP (stdlib modules) allows Absolute Path Traversal, File Manipulation. This vulnerability is associated with program files lib/stdlib/src/zip.erl and program routines zip:unzip/1, zip:unzip/2, zip:extract/1, zip:extract/2 unless the memory option is passed. This issue affects OTP from OTP 17.0 until OTP 28.0.1, OTP 27.3.4.1 and OTP 26.2.5.13, corresponding to stdlib from 2.0 until 7.0.1, 6.2.2.1 and 5.2.3.4.
CVE-2025-4748
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Erlang OTP (stdlib modules) allows Absolute Path Traversal, File Manipulation. This vulnerability is associated with program files lib/stdlib/src/zip.erl and program routines zip:unzip/1, zip:unzip/2, zip:extract/1, zip:extract/2 unless the memory option is passed. This issue affects OTP from OTP 17.0 until OTP 28.0.1, OTP 27.3.4.1 and OTP 26.2.5.13, corresponding to stdlib from 2.0 until 7.0.1, 6.2.2.1 and 5.2.3.4.
CVE-2025-4748
Absolute path traversal in zip:unzip/1,2
CVE-2025-4748
Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...
SUSE-SU-2025:02332-1
Security update for erlang
SUSE-SU-2025:02331-1
Security update for erlang26
ROS-20251030-05
Множественные уязвимости erlang
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2025-13871 Уязвимость набора библиотек OTP языка программирования Erlang, связанная с неверным ограничением имени пути к каталогу с ограниченным доступом, позволяющая нарушителю записывать произвольные файлы в систему | CVSS3: 4.4 | 0% Низкий | 5 месяцев назад |
 | CVE-2025-4748 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Erlang OTP (stdlib modules) allows Absolute Path Traversal, File Manipulation. This vulnerability is associated with program files lib/stdlib/src/zip.erl and program routines zip:unzip/1, zip:unzip/2, zip:extract/1, zip:extract/2 unless the memory option is passed. This issue affects OTP from OTP 17.0 until OTP 28.0.1, OTP 27.3.4.1 and OTP 26.2.5.13, corresponding to stdlib from 2.0 until 7.0.1, 6.2.2.1 and 5.2.3.4. | 0% Низкий | 5 месяцев назад | |
 | CVE-2025-4748 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Erlang OTP (stdlib modules) allows Absolute Path Traversal, File Manipulation. This vulnerability is associated with program files lib/stdlib/src/zip.erl and program routines zip:unzip/1, zip:unzip/2, zip:extract/1, zip:extract/2 unless the memory option is passed. This issue affects OTP from OTP 17.0 until OTP 28.0.1, OTP 27.3.4.1 and OTP 26.2.5.13, corresponding to stdlib from 2.0 until 7.0.1, 6.2.2.1 and 5.2.3.4. | 0% Низкий | 5 месяцев назад | |
 | CVE-2025-4748 Absolute path traversal in zip:unzip/1,2 | 0% Низкий | 3 месяца назад | |
| CVE-2025-4748 Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ... | 0% Низкий | 5 месяцев назад | |
 | SUSE-SU-2025:02332-1 Security update for erlang | 0% Низкий | 4 месяца назад | |
| SUSE-SU-2025:02331-1 Security update for erlang26 | 0% Низкий | 4 месяца назад | |
 | ROS-20251030-05 Множественные уязвимости erlang | CVSS3: 5.3 | 11 дней назад |
Уязвимостей на страницу