FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-27 12:04:33 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
b692a49c-9ae7-4958-af21-cbf8f5b819ea	py-impacket -- multiple path traversal vulnerabilities asolino reports: Multiple path traversal vulnerabilities exist in smbserver.py in Impacket through 0.9.22. An attacker that connects to a running smbserver instance can list and write to arbitrary files via ../ directory traversal. This could potentially be abused to achieve arbitrary code execution by replacing /etc/shadow or an SSH authorized key. Discovery 2021-05-05 Entry 2023-04-09 py37-impacket py38-impacket py39-impacket py310-impacket py311-impacket >= 0.9.10 lt 0.9.23 CVE-2021-31800 https://osv.dev/vulnerability/PYSEC-2021-17 https://osv.dev/vulnerability/GHSA-mj63-64x7-57xf

VuXML ID

Description

b692a49c-9ae7-4958-af21-cbf8f5b819ea

py-impacket -- multiple path traversal vulnerabilities

asolino reports:

Multiple path traversal vulnerabilities exist in smbserver.py in Impacket through 0.9.22. An attacker that connects to a running smbserver instance can list and write to arbitrary files via ../ directory traversal. This could potentially be abused to achieve arbitrary code execution by replacing /etc/shadow or an SSH authorized key.

Discovery 2021-05-05
Entry 2023-04-09
py37-impacket
py38-impacket
py39-impacket
py310-impacket
py311-impacket

>= 0.9.10 lt 0.9.23

CVE-2021-31800
https://osv.dev/vulnerability/PYSEC-2021-17
https://osv.dev/vulnerability/GHSA-mj63-64x7-57xf