CVE-2021-3806

Sažetak

A path traversal vulnerability on Pardus Software Center's "extractArchive" function could allow anyone on the same network to do a man-in-the-middle and write files on the system.

Reference

https://pentest.blog/pardus-21-linux-distro-remote-code-execution-0day-2021/
https://www.usom.gov.tr/bildirim/tr-21-0754

CVSS

Base:	7.1
Impact:	6.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	COMPLETE	NONE

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:C/A:N

Zadnje važnije ažuriranje

17-09-2024 - 00:15

Objavljeno

18-09-2021 - 14:15