VYPR

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

BaseStableLikelihood: High

Description

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Hierarchy (View 1000)

Parents

Children

Related attack patterns (CAPEC)

CAPEC-126 · CAPEC-64 · CAPEC-76 · CAPEC-78 · CAPEC-79

CVEs mapped to this weakness (5,488)

page 128 of 275
  • CVE-2019-10352MedJul 17, 2019
    risk 0.36cvss 6.5epss 0.10

    A path traversal vulnerability in Jenkins 2.185 and earlier, LTS 2.176.1 and earlier in core/src/main/java/hudson/model/FileParameterValue.java allowed attackers with Job/Configure permission to define a file parameter with a file name outside the intended directory, resulting…

  • CVE-2018-1000997MedJan 23, 2019
    risk 0.36cvss 6.5epss 0.03

    A path traversal vulnerability exists in the Stapler web framework used by Jenkins 2.145 and earlier, LTS 2.138.1 and earlier in core/src/main/java/org/kohsuke/stapler/Facet.java, groovy/src/main/java/org/kohsuke/stapler/jelly/groovy/GroovyFacet.java,…

  • CVE-2018-1000406MedJan 9, 2019
    risk 0.36cvss 6.5epss 0.04

    A path traversal vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier in core/src/main/java/hudson/model/FileParameterValue.java that allows attackers with Job/Configure permission to define a file parameter with a file name outside the intended directory,…

  • CVE-2018-17828MedOct 1, 2018
    risk 0.36cvss 5.5epss 0.02

    Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. (dot dot) in a zip file, because of the function unzzip_cat in the bins/unzzipcat-mem.c file.

  • CVE-2018-0659MedSep 7, 2018
    risk 0.36cvss 5.5epss 0.01

    Directory traversal vulnerability in ver.2.8.4.0 and earlier and ver.3.3.0.0 and earlier allows an attacker to create or overwrite existing files via specially crafted ATC file.

  • CVE-2018-1000801MedSep 6, 2018
    risk 0.36cvss 5.5epss 0.02

    okular version 18.08 and earlier contains a Directory Traversal vulnerability in function "unpackDocumentArchive(...)" in "core/document.cpp" that can result in Arbitrary file creation on the user workstation. This attack appear to be exploitable via he victim must open a…

  • CVE-2018-10862MedJul 27, 2018
    risk 0.36cvss 5.5epss 0.01

    WildFly Core before version 6.0.0.Alpha3 does not properly validate file paths in .war archives, allowing for the extraction of crafted .war archives to overwrite arbitrary files. This is an instance of the 'Zip Slip' vulnerability.

  • CVE-2018-1002208MedJul 25, 2018
    risk 0.36cvss 5.5epss 0.09

    SharpZipLib before 1.0 RC1 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'.

  • CVE-2018-14573MedJul 23, 2018
    risk 0.36cvss 5.5epss 0.06

    A Local File Inclusion (LFI) vulnerability exists in the Web Interface API of TightRope Media Carousel Digital Signage before 7.3.5. The RenderingFetch API allows for the downloading of arbitrary files through the use of directory traversal sequences, aka CSL-1683.

  • CVE-2018-1999020MedJul 23, 2018
    risk 0.36cvss 5.5epss 0.01

    Open Networking Foundation (ONF) ONOS version 1.13.2 and earlier version contains a Directory Traversal vulnerability in core/common/src/main/java/org/onosproject/common/app/ApplicationArchive.java line 35 that can result in arbitrary file deletion (overwrite). This attack…

  • CVE-2018-3770MedJul 20, 2018
    risk 0.36cvss 5.5epss 0.01

    A path traversal exists in markdown-pdf version <9.0.0 that allows a user to insert a malicious html code that can result in reading the local files.

  • CVE-2017-16814MedFeb 26, 2018
    risk 0.36cvss 5.5epss 0.01

    A Directory Traversal issue was discovered in the Foxit MobilePDF app before 6.1 for iOS. This occurs by abusing the URL + escape character during a Wi-Fi transfer, which could be exploited by attackers to bypass intended restrictions on local application files.

  • CVE-2018-6356MedFeb 20, 2018
    risk 0.36cvss 6.5epss 0.04

    Jenkins before 2.107 and Jenkins LTS before 2.89.4 did not properly prevent specifying relative paths that escape a base directory for URLs accessing plugin resource files. This allowed users with Overall/Read permission to download files from the Jenkins master they should not…

  • CVE-2018-0123MedFeb 8, 2018
    risk 0.36cvss 5.5epss 0.00

    A Path Traversal vulnerability in the diagnostic shell for Cisco IOS and IOS XE Software could allow an authenticated, local attacker to use certain diagnostic shell commands that can overwrite system files. These system files may be sensitive and should not be able to be…

  • CVE-2018-1047MedJan 24, 2018
    risk 0.36cvss 5.5epss 0.00

    A flaw was found in Wildfly 9.x. A path traversal vulnerability through the org.wildfly.extension.undertow.deployment.ServletResourceManager.getResource method could lead to information disclosure of arbitrary local files.

  • CVE-2014-9485MedJan 16, 2018
    risk 0.36cvss 5.5epss 0.04

    Directory traversal vulnerability in the do_extract_currentfile function in miniunz.c in miniunzip in minizip before 1.1-5 might allow remote attackers to write to arbitrary files via a crafted entry in a ZIP archive.

  • CVE-2017-2695MedNov 22, 2017
    risk 0.36cvss 5.5epss 0.01

    TIT-AL00C583B211 has a directory traversal vulnerability which allows an attacker to obtain the files in email application.

  • CVE-2014-9983MedJun 4, 2017
    risk 0.36cvss 5.5epss 0.02

    Directory Traversal exists in RAR 4.x and 5.x because an unpack operation follows any symlinks, including symlinks contained in the archive. This allows remote attackers to write to arbitrary files via a crafted archive.

  • CVE-2017-8314MedMay 23, 2017
    risk 0.36cvss 5.5epss 0.02

    Directory Traversal in Zip Extraction built-in function in Kodi 17.1 and earlier allows arbitrary file write on disk via a Zip file as subtitles.

  • CVE-2016-7843MedApr 28, 2017
    risk 0.36cvss 5.5epss 0.03

    Directory traversal vulnerability in AttacheCase for Java 0.60 and earlier, AttacheCase Lite 1.4.6 and earlier, and AttacheCase Pro 1.5.7 and earlier allows remote attackers to read arbitrary files via specially crafted ATC file.