Vulnerabilities > Files or Directories Accessible to External Parties
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-06-16 | CVE-2023-34645 | Files or Directories Accessible to External Parties vulnerability in Jflyfox Jfinal CMS 5.1.0 jfinal CMS 5.1.0 has an arbitrary file read vulnerability. | 7.5 |
2023-06-14 | CVE-2023-2976 | Files or Directories Accessible to External Parties vulnerability in Google Guava Use of Java's default temporary directory for file creation in `FileBackedOutputStream` in Google Guava versions 1.0 to 31.1 on Unix systems and Android Ice Cream Sandwich allows other users and apps on the machine with access to the default Java temporary directory to be able to access the files created by the class. Even though the security vulnerability is fixed in version 32.0.0, we recommend using version 32.0.1 as version 32.0.0 breaks some functionality under Windows. | 7.1 |
2023-06-13 | CVE-2023-33568 | Files or Directories Accessible to External Parties vulnerability in Dolibarr Erp/Crm 16.0.0/16.0.1/16.0.2 An issue in Dolibarr 16 before 16.0.5 allows unauthenticated attackers to perform a database dump and access a company's entire customer file, prospects, suppliers, and employee information if a contact file exists. | 7.5 |
2023-05-30 | CVE-2023-32684 | Files or Directories Accessible to External Parties vulnerability in Linuxfoundation Lima Lima launches Linux virtual machines, typically on macOS, for running containerd. | 2.5 |
2023-05-22 | CVE-2023-31064 | Files or Directories Accessible to External Parties vulnerability in Apache Inlong Files or Directories Accessible to External Parties vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.2.0 through 1.6.0. | 7.5 |
2023-05-22 | CVE-2023-31066 | Files or Directories Accessible to External Parties vulnerability in Apache Inlong 1.4.0/1.5.0/1.6.0 Files or Directories Accessible to External Parties vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.6.0. | 9.1 |
2023-05-18 | CVE-2022-45450 | Files or Directories Accessible to External Parties vulnerability in Acronis Agent and Cyber Protect Sensitive information disclosure and manipulation due to improper authorization. | 7.5 |
2023-05-18 | CVE-2023-20183 | Files or Directories Accessible to External Parties vulnerability in Cisco DNA Center Multiple vulnerabilities in the API of Cisco DNA Center Software could allow an authenticated, remote attacker to read information from a restricted container, enumerate user information, or execute arbitrary commands in a restricted container as the root user. | 4.3 |
2023-05-18 | CVE-2023-20184 | Files or Directories Accessible to External Parties vulnerability in Cisco DNA Center Multiple vulnerabilities in the API of Cisco DNA Center Software could allow an authenticated, remote attacker to read information from a restricted container, enumerate user information, or execute arbitrary commands in a restricted container as the root user. | 4.3 |
2023-05-17 | CVE-2023-2766 | Files or Directories Accessible to External Parties vulnerability in Weaver Office Automation 9.5 A vulnerability was found in Weaver OA 9.5 and classified as problematic. | 7.5 |