Skip to main content

Bazarr

4 CVEs product

Monthly

CVE-2024-40348 HIGH POC This Week

An issue in the component /api/swaggerui/static of Bazaar v1.4.3 allows unauthenticated attackers to execute a directory traversal. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Bazarr
NVD GitHub
CVSS 3.1
8.2
EPSS
8.3%
CVE-2023-50266 MEDIUM PATCH This Month

Bazarr manages and downloads subtitles. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Server-Side Request Forgery (SSRF) vulnerability could allow attackers to make the server perform requests to unintended internal or external resources.

SSRF Bazarr
NVD GitHub
CVSS 3.1
5.3
EPSS
0.6%
CVE-2023-50265 HIGH POC PATCH This Week

Bazarr manages and downloads subtitles. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal Bazarr
NVD GitHub
CVSS 3.1
7.5
EPSS
0.9%
CVE-2023-50264 HIGH POC PATCH This Week

Bazarr manages and downloads subtitles. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal Bazarr
NVD GitHub
CVSS 3.1
7.5
EPSS
0.9%
EPSS 8% CVSS 8.2
HIGH POC This Week

An issue in the component /api/swaggerui/static of Bazaar v1.4.3 allows unauthenticated attackers to execute a directory traversal. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Bazarr
NVD GitHub
EPSS 1% CVSS 5.3
MEDIUM PATCH This Month

Bazarr manages and downloads subtitles. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Server-Side Request Forgery (SSRF) vulnerability could allow attackers to make the server perform requests to unintended internal or external resources.

SSRF Bazarr
NVD GitHub
EPSS 1% CVSS 7.5
HIGH POC PATCH This Week

Bazarr manages and downloads subtitles. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal Bazarr
NVD GitHub
EPSS 1% CVSS 7.5
HIGH POC PATCH This Week

Bazarr manages and downloads subtitles. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal Bazarr
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy