Gnome Librsvg : Security vulnerabilities, CVEs directory traversal

CVE-2023-38633

A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files (on the local filesystem outside of the expected area), as demonstrated by href=".?../../../../../../../../../../etc/passwd" in an xi:include element.

Max CVSS

5.5

EPSS Score

0.16%

Published

2023-07-22

Updated

2024-01-24

1 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

Gnome » Librsvg : Security Vulnerabilities, CVEs, (Directory traversal)

CVE-2023-38633