Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
schollz croc vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2023-43616
An issue exists in Croc up to and including 9.6.5. A sender can cause a receiver to overwrite files during ZIP extraction.
Schollz Croc
5.3
CVSSv3
CVE-2023-43617
An issue exists in Croc up to and including 9.6.5. When a custom shared secret is used, the sender and receiver may divulge parts of this secret to an untrusted Relay, as part of composing a room name.
Schollz Croc
7.8
CVSSv3
CVE-2023-43619
An issue exists in Croc up to and including 9.6.5. A sender may send dangerous new files to a receiver, such as executable content or a .ssh/authorized_keys file.
Schollz Croc
7.8
CVSSv3
CVE-2023-43620
An issue exists in Croc up to and including 9.6.5. A sender may place ANSI or CSI escape sequences in a filename to attack the terminal device of a receiver.
Schollz Croc
4.7
CVSSv3
CVE-2023-43621
An issue exists in Croc up to and including 9.6.5. The shared secret, located on a command line, can be read by local users who list all processes and their arguments.
Schollz Croc
5.3
CVSSv3
CVE-2023-43618
An issue exists in Croc up to and including 9.6.5. The protocol requires a sender to provide its local IP addresses in cleartext via an ips? message.
Schollz Croc
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started