Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-02 | CVE-2021-22281 | Path Traversal vulnerability in Br-Automation Automation Studio : Relative Path Traversal vulnerability in B&R Industrial Automation Automation Studio allows Relative Path Traversal.This issue affects Automation Studio: from 4.0 through 4.12. | 7.5 |
| 2024-02-02 | CVE-2024-24482 | Path Traversal vulnerability in Apktool Aprktool before 2.9.3 on Windows allows ../ and /.. | 9.8 |
| 2024-02-02 | CVE-2024-22779 | Path Traversal vulnerability in Kihron Serverrpexposer 1.0.2 Directory Traversal vulnerability in Kihron ServerRPExposer v.1.0.2 and before allows a remote attacker to execute arbitrary code via the loadServerPack in ServerResourcePackProviderMixin.java. | 9.8 |
| 2024-02-02 | CVE-2024-22096 | Path Traversal vulnerability in Rapidscada Rapid Scada In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, an attacker can append path traversal characters to the filename when using a specific command, allowing them to read arbitrary files from the system. | 6.5 |
| 2024-02-01 | CVE-2024-21852 | Path Traversal vulnerability in Rapidscada Rapid Scada In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, an attacker can supply a malicious configuration file by utilizing a Zip Slip vulnerability in the unpacking routine to achieve remote code execution. | 8.8 |
| 2024-02-01 | CVE-2024-24756 | Path Traversal vulnerability in Crafatar Crafatar serves Minecraft avatars based on the skin for use in external applications. | 7.5 |
| 2024-01-31 | CVE-2023-5390 | Path Traversal vulnerability in Honeywell products An attacker could potentially exploit this vulnerability, leading to files being read from the Honeywell Experion ControlEdge VirtualUOC and ControlEdge UOC. | 5.3 |
| 2024-01-31 | CVE-2024-24579 | Path Traversal vulnerability in Anchore Stereoscope stereoscope is a go library for processing container images and simulating a squash filesystem. | 9.8 |
| 2024-01-30 | CVE-2024-22523 | Path Traversal vulnerability in Fuwushe Ifair 23.8Ad0 Directory Traversal vulnerability in Qiyu iFair version 23.8_ad0 and before, allows remote attackers to obtain sensitive information via uploadimage component. | 7.5 |
| 2024-01-29 | CVE-2023-30970 | Path Traversal vulnerability in Palantir products Gotham Table service and Forward App were found to be vulnerable to a Path traversal issue allowing an authenticated user to read arbitrary files on the file system. | 6.5 |