Количество 8
Количество 8
CVE-2018-10897
A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system via path traversal. If reposync is running with heightened privileges on a targeted system, this flaw could potentially result in system compromise via the overwriting of critical system files. Version 1.1.31 and older are believed to be affected.
CVE-2018-10897
A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system via path traversal. If reposync is running with heightened privileges on a targeted system, this flaw could potentially result in system compromise via the overwriting of critical system files. Version 1.1.31 and older are believed to be affected.
CVE-2018-10897
A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system via path traversal. If reposync is running with heightened privileges on a targeted system, this flaw could potentially result in system compromise via the overwriting of critical system files. Version 1.1.31 and older are believed to be affected.
CVE-2018-10897
A directory traversal issue was found in reposync, a part of yum-utils ...
GHSA-48q2-62w2-89cw
A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system via path traversal. If reposync is running with heightened privileges on a targeted system, this flaw could potentially result in system compromise via the overwriting of critical system files. Version 1.1.31 and older are believed to be affected.
ELSA-2018-2285
ELSA-2018-2285: yum-utils security update (IMPORTANT)
ELSA-2018-2284
ELSA-2018-2284: yum-utils security update (IMPORTANT)
BDU:2019-00254
Уязвимость функции reposync менеджера пакетов YUM, позволяющая нарушителю создавать, изменять или удалять произвольные файлы
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2018-10897 A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system via path traversal. If reposync is running with heightened privileges on a targeted system, this flaw could potentially result in system compromise via the overwriting of critical system files. Version 1.1.31 and older are believed to be affected. | CVSS3: 8.1 | 3% Низкий | больше 7 лет назад |
 | CVE-2018-10897 A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system via path traversal. If reposync is running with heightened privileges on a targeted system, this flaw could potentially result in system compromise via the overwriting of critical system files. Version 1.1.31 and older are believed to be affected. | CVSS3: 8.8 | 3% Низкий | больше 7 лет назад |
 | CVE-2018-10897 A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system via path traversal. If reposync is running with heightened privileges on a targeted system, this flaw could potentially result in system compromise via the overwriting of critical system files. Version 1.1.31 and older are believed to be affected. | CVSS3: 8.1 | 3% Низкий | больше 7 лет назад |
| CVE-2018-10897 A directory traversal issue was found in reposync, a part of yum-utils ... | CVSS3: 8.1 | 3% Низкий | больше 7 лет назад |
| GHSA-48q2-62w2-89cw A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system via path traversal. If reposync is running with heightened privileges on a targeted system, this flaw could potentially result in system compromise via the overwriting of critical system files. Version 1.1.31 and older are believed to be affected. | CVSS3: 8.1 | 3% Низкий | больше 3 лет назад |
| ELSA-2018-2285 ELSA-2018-2285: yum-utils security update (IMPORTANT) | больше 7 лет назад | ||
| ELSA-2018-2284 ELSA-2018-2284: yum-utils security update (IMPORTANT) | больше 7 лет назад | ||
 | BDU:2019-00254 Уязвимость функции reposync менеджера пакетов YUM, позволяющая нарушителю создавать, изменять или удалять произвольные файлы | CVSS3: 8.1 | 3% Низкий | почти 7 лет назад |
Уязвимостей на страницу