Directory Traversal vulnerability in Hex-Dragon Plain Craft Launcher 2 version Alpha 1.3.9, allows local attackers to execute arbitrary code and gain sensitive information. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.
RCE
Path Traversal
Plain Craft Launcher 2
NVD
GitHub
CVSS 3.1
7.8
EPSS
0.7%
Mbed TLS 2.x before 2.28.5 and 3.x before 3.5.0 has a Buffer Overflow. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Buffer Overflow
Mbed Tls
Fedora
NVD
VulDB
CVSS 3.1
7.5
EPSS
0.3%