Skip to main content

Minecraft

2 CVEs product

Monthly

CVE-2023-33245 HIGH This Week

Minecraft through 1.19 and 1.20 pre-releases before 7 (Java) allow arbitrary file overwrite, and possibly code execution, via crafted world data that contains a symlink. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Minecraft
NVD
CVSS 3.1
8.8
EPSS
0.9%
CVE-2021-35054 HIGH This Week

Minecraft before 1.17.1, when online-mode=false is configured, allows path traversal for deletion of arbitrary JSON files. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Minecraft
NVD
CVSS 3.1
7.5
EPSS
1.4%
EPSS 1% CVSS 8.8
HIGH This Week

Minecraft through 1.19 and 1.20 pre-releases before 7 (Java) allow arbitrary file overwrite, and possibly code execution, via crafted world data that contains a symlink. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Minecraft
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Minecraft before 1.17.1, when online-mode=false is configured, allows path traversal for deletion of arbitrary JSON files. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Minecraft
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy