Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-16 | CVE-2023-6023 | Path Traversal vulnerability in Vertaai Modeldb An attacker can read any file on the filesystem on the server hosting ModelDB through an LFI in the artifact_path URL parameter. | 7.5 |
| 2023-11-15 | CVE-2023-34062 | Path Traversal vulnerability in Pivotal Reactor Netty In Reactor Netty HTTP Server, versions 1.1.x prior to 1.1.13 and versions 1.0.x prior to 1.0.39, a malicious user can send a request using a specially crafted URL that can lead to a directory traversal attack. Specifically, an application is vulnerable if Reactor Netty HTTP Server is configured to serve static resources. | 7.5 |
| 2023-11-14 | CVE-2022-27229 | Path Traversal vulnerability in Intel Hdmi Firmware Path transversal in some Intel(R) NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN HDMI firmware update tool software before version 1.79.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2023-11-14 | CVE-2023-24592 | Path Traversal vulnerability in Intel products Path traversal in the some Intel(R) oneAPI Toolkits and Component software before version 2023.1 may allow authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2023-11-14 | CVE-2023-32278 | Path Traversal vulnerability in Intel NUC Uniwill Service Driver Path transversal in some Intel(R) NUC Uniwill Service Driver for Intel(R) NUC M15 Laptop Kits - LAPRC510 & LAPRC710 Uniwill Service Driver installation software before version 1.0.1.7 for Intel(R) NUC Software Studio may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.3 |
| 2023-11-14 | CVE-2023-32655 | Path Traversal vulnerability in Intel USB Type C Power Delivery Controller Path transversal in some Intel(R) NUC Kits & Mini PCs - NUC8i7HVK & NUC8HNK USB Type C power delivery controller installatio software before version 1.0.10.3 for Windows may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.3 |
| 2023-11-14 | CVE-2023-33878 | Path Traversal vulnerability in Intel Audio Install Package Path transversal in some Intel(R) NUC P14E Laptop Element Audio Install Package software before version 156 for Windows may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2023-11-14 | CVE-2023-45880 | Path Traversal vulnerability in Gibbonedu Gibbon GibbonEdu Gibbon through version 25.0.0 allows Directory Traversal via the report template builder. | 7.2 |
| 2023-11-10 | CVE-2023-47246 | Path Traversal vulnerability in Sysaid In SysAid On-Premise before 23.3.36, a path traversal vulnerability leads to code execution after an attacker writes a file to the Tomcat webroot, as exploited in the wild in November 2023. | 9.8 |
| 2023-11-09 | CVE-2023-45283 | Path Traversal vulnerability in Golang GO The filepath package does not recognize paths with a \??\ prefix as special. | 7.5 |