Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
flightcrew project flightcrew vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2019-13241
FlightCrew v0.9.2 and older are vulnerable to a directory traversal, allowing malicious users to write arbitrary files via a ../ (dot dot slash) in a ZIP archive entry that is mishandled during extraction.
Flightcrew Project Flightcrew
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 16.04
7.5
CVSSv3
CVE-2019-14452
Sigil prior to 0.9.16 is vulnerable to a directory traversal, allowing malicious users to write arbitrary files via a ../ (dot dot slash) in a ZIP archive entry that is mishandled during extraction.
Sigil-ebook Sigil
Flightcrew Project Flightcrew
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
6.5
CVSSv3
CVE-2019-13453
Zipios prior to 0.1.7 does not properly handle certain malformed zip archives and can go into an infinite loop, causing a denial of service. This is related to zipheadio.h:readUint32() and zipfile.cpp:Zipfile::Zipfile().
Zipios Project Zipios
5.5
CVSSv3
CVE-2019-13032
An issue exists in FlightCrew v0.9.2 and previous versions. A NULL pointer dereference occurs in GetRelativePathToNcx() or GetRelativePathsToXhtmlDocuments() when a NULL pointer is passed to xc::XMLUri::isValidURI(). This affects third-party software (not Sigil) that uses FlightC...
Flightcrew Project Flightcrew
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started