In Stellarium through 1.2, attackers can write to files that are typically unintended, such as ones with absolute pathnames or .. directory traversal.
References
Configurations
History
07 Nov 2023, 04:10
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
29 Mar 2023, 05:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
29 Mar 2023, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
21 Mar 2023, 15:35
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-22 | |
First Time |
Stellarium
Stellarium stellarium |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
CPE | cpe:2.3:a:stellarium:stellarium:*:*:*:*:*:*:*:* | |
References | (MISC) https://github.com/Stellarium/stellarium/commit/1261f74dc4aa6bbd01ab514343424097f8cf46b7 - Patch | |
References | (MISC) https://github.com/Stellarium/stellarium/commit/787a894897b7872ae96e6f5804a182210edd5c78 - Patch | |
References | (MISC) https://github.com/Stellarium/stellarium/commit/eba61df3b38605befcb43687a4c0a159dbc0c5cb - Patch |
15 Mar 2023, 04:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-03-15 04:15
Updated : 2023-12-10 14:48
NVD link : CVE-2023-28371
Mitre link : CVE-2023-28371
CVE.ORG link : CVE-2023-28371
JSON object : View
Products Affected
stellarium
- stellarium
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')