CVE Vulnerabilities

CVE-2023-0046

Improper Restriction of Names for Files and Other Resources

Published: Jan 04, 2023 | Modified: Jan 10, 2023
CVSS 3.x
7.2
HIGH
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

Improper Restriction of Names for Files and Other Resources in GitHub repository lirantal/daloradius prior to master-branch.

Weakness

The product constructs the name of a file or other resource using input from an upstream component, but it does not restrict or incorrectly restricts the resulting name.

Affected Software

Name Vendor Start Version End Version
Daloradius Daloradius * *

Potential Mitigations

References