Количество 3
Количество 3
CVE-2023-39916
NLnet Labs’ Routinator 0.9.0 up to and including 0.12.1 as well as 0.14.0 up to and including 0.14.2 contains a possible path traversal vulnerability in the optional, off-by-default keep-rrdp-responses feature that allows users to store the content of responses received for RRDP requests. The location of these stored responses is constructed from the URL of the request. Due to insufficient sanitation of the URL, it is possible for an attacker to craft a URL that results in the response being stored outside of the directory specified for it.
CVE-2023-39916
NLnet Labs\u2019 Routinator 0.9.0 up to and including 0.12.1 as well a ...
GHSA-5rxf-fqch-7vqp
NLnet Labs’ Routinator vulnerable to path traversal
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-39916 NLnet Labs’ Routinator 0.9.0 up to and including 0.12.1 as well as 0.14.0 up to and including 0.14.2 contains a possible path traversal vulnerability in the optional, off-by-default keep-rrdp-responses feature that allows users to store the content of responses received for RRDP requests. The location of these stored responses is constructed from the URL of the request. Due to insufficient sanitation of the URL, it is possible for an attacker to craft a URL that results in the response being stored outside of the directory specified for it. | CVSS3: 9.3 | 0% Низкий | больше 2 лет назад |
| CVE-2023-39916 NLnet Labs\u2019 Routinator 0.9.0 up to and including 0.12.1 as well a ... | CVSS3: 9.3 | 0% Низкий | больше 2 лет назад |
| GHSA-5rxf-fqch-7vqp NLnet Labs’ Routinator vulnerable to path traversal | CVSS3: 9.3 | 0% Низкий | больше 2 лет назад |
Уязвимостей на страницу