Exploit Report

Computer Security And Bug Information

CVE-2023-28371

CVECVE-2023-28371
CVE Title
Published Date2023-03-15T04:15Z
Modified Date2023-03-21T15:35Z
CWE TypeCWE-22
CVSS 3.xCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
DescriptionIn Stellarium through 1.2, attackers can write to files that are typically unintended, such as ones with absolute pathnames or .. directory traversal.
References
By clicking these links you will leave this website. We do not endorse and will not be held accountable for any activity on external sites.
Reference URLhttps://github.com/Stellarium/stellarium/commit/eba61df3b38605befcb43687a4c0a159dbc0c5cb
Reference DescriptionMISC https://github.com/Stellarium/stellarium/commit/eba61df3b38605befcb43687a4c0a159dbc0c5cb
Reference URLhttps://github.com/Stellarium/stellarium/commit/1261f74dc4aa6bbd01ab514343424097f8cf46b7
Reference DescriptionMISC https://github.com/Stellarium/stellarium/commit/1261f74dc4aa6bbd01ab514343424097f8cf46b7
Reference URLhttps://github.com/Stellarium/stellarium/commit/787a894897b7872ae96e6f5804a182210edd5c78
Reference DescriptionMISC https://github.com/Stellarium/stellarium/commit/787a894897b7872ae96e6f5804a182210edd5c78
TagsPatch
Sources NIST MITRE

This site's data is aggregated programmatically and provided "as is" without any representations or warranties, express or implied. Exploit.report is not affiliated with the The MITRE Corporation, U.S. Department of Homeland Security (DHS), Cybersecurity and Infrastructure Security Agency (CISA), or US government in any way. CVE and the CVE logo are registered trademarks of The MITRE Corporation

© 2022 Exploit.Report | Data | Contact | Privacy Policy | Articles