Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-09 | CVE-2022-30333 | Path Traversal vulnerability in multiple products RARLAB UnRAR before 6.12 on Linux and UNIX allows directory traversal to write to files during an extract (aka unpack) operation, as demonstrated by creating a ~/.ssh/authorized_keys file. | 7.5 |
| 2022-05-06 | CVE-2022-26889 | Path Traversal vulnerability in Splunk 8.1.0/8.1.1 In Splunk Enterprise versions before 8.1.2, the uri path to load a relative resource within a web page is vulnerable to path traversal. | 8.8 |
| 2022-05-06 | CVE-2022-24878 | Path Traversal vulnerability in Fluxcd Flux2 Flux is an open and extensible continuous delivery solution for Kubernetes. | 6.5 |
| 2022-05-06 | CVE-2022-24877 | Path Traversal vulnerability in Fluxcd Flux2 Flux is an open and extensible continuous delivery solution for Kubernetes. | 8.8 |
| 2022-05-05 | CVE-2021-38693 | Path Traversal vulnerability in Qnap QTS and Qutscloud A path traversal vulnerability has been reported to affect QNAP device running QuTScloud, QuTS hero, QTS, QVR Pro Appliance. | 5.3 |
| 2022-05-05 | CVE-2021-42183 | Path Traversal vulnerability in Masacms 7.2.1 MasaCMS 7.2.1 is affected by a path traversal vulnerability in /index.cfm/_api/asset/image/. | 7.5 |
| 2022-05-05 | CVE-2021-45783 | Path Traversal vulnerability in Bookeen Notea Firmware Bkr1.0.520210608 Bookeen Notea Firmware BK_R_1.0.5_20210608 is affected by a directory traversal vulnerability that allows an attacker to obtain sensitive information. | 4.6 |
| 2022-05-03 | CVE-2022-20101 | Path Traversal vulnerability in Google Android 11.0/12.0 In aee daemon, there is a possible information disclosure due to a path traversal. | 5.5 |
| 2022-05-03 | CVE-2022-28784 | Path Traversal vulnerability in Google Android 10.0/11.0/12.0 Path traversal vulnerability in Galaxy Themes prior to SMR May-2022 Release 1 allows attackers to list file names in arbitrary directory as system user. | 3.3 |
| 2022-05-03 | CVE-2022-1554 | Path Traversal vulnerability in Clinical-Genomics Scout Path Traversal due to `send_file` call in GitHub repository clinical-genomics/scout prior to 4.52. | 7.5 |