Skip to main content

Glewlwyd

2 CVEs product

Monthly

CVE-2022-29967 HIGH PATCH This Week

static_compressed_inmemory_website_callback.c in Glewlwyd through 2.6.2 allows directory traversal. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal Glewlwyd
NVD GitHub
CVSS 3.1
7.5
EPSS
1.5%
CVE-2021-45379 HIGH PATCH This Week

Glewlwyd 2.0.0, fixed in 2.6.1 is affected by an incorrect access control vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass Glewlwyd
NVD GitHub
CVSS 3.1
8.8
EPSS
1.0%
EPSS 2% CVSS 7.5
HIGH PATCH This Week

static_compressed_inmemory_website_callback.c in Glewlwyd through 2.6.2 allows directory traversal. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal Glewlwyd
NVD GitHub
EPSS 1% CVSS 8.8
HIGH PATCH This Week

Glewlwyd 2.0.0, fixed in 2.6.1 is affected by an incorrect access control vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass Glewlwyd
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy