Skip to main content

U Root

3 CVEs product

Monthly

CVE-2020-7669 Go HIGH POC PATCH This Week

This affects all versions of package github.com/u-root/u-root/pkg/tarutil. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal U Root
NVD GitHub
CVSS 3.1
7.5
EPSS
1.8%
CVE-2020-7666 Go HIGH POC PATCH This Week

This affects all versions of package github.com/u-root/u-root/pkg/cpio. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal U Root
NVD GitHub
CVSS 3.1
7.5
EPSS
1.5%
CVE-2020-7665 Go HIGH POC PATCH This Week

This affects all versions of package github.com/u-root/u-root/pkg/uzip. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal U Root
NVD GitHub
CVSS 3.1
7.5
EPSS
1.8%
EPSS 2% CVSS 7.5
HIGH POC PATCH This Week

This affects all versions of package github.com/u-root/u-root/pkg/tarutil. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal U Root
NVD GitHub
EPSS 2% CVSS 7.5
HIGH POC PATCH This Week

This affects all versions of package github.com/u-root/u-root/pkg/cpio. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal U Root
NVD GitHub
EPSS 2% CVSS 7.5
HIGH POC PATCH This Week

This affects all versions of package github.com/u-root/u-root/pkg/uzip. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal U Root
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy