Vulnerabilities > Inedo > Otter > 0.5.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-12-01 | CVE-2017-17086 | Improper Input Validation vulnerability in Inedo Otter Indeo Otter through 1.7.4 mishandles a "</script>" substring in an initial DP payload, which allows remote attackers to cause a denial of service (crash) or possibly have unspecified other impact, as demonstrated by the Plan Editor. | 7.5 |
| 2017-12-01 | CVE-2017-15607 | Path Traversal vulnerability in Inedo Otter Inedo Otter before 1.7.4 has directory traversal in filesystem-based rafts via vectors involving '/' characters or initial '.' characters, aka OT-181. | 7.5 |