CVE-2021-3806

Summary

A path traversal vulnerability on Pardus Software Center's "extractArchive" function could allow anyone on the same network to do a man-in-the-middle and write files on the system.

Affected Software

VendorProductVersion RangeStatus
TUBITAKPardus Software Centerunspecified < 0.1.0~beta10affected

Weaknesses

  • CWE-22: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

ADP Enrichment

CVE Program Container

Additional References

References