Koji Project » Koji : Security Vulnerabilities, CVEs,

CVE-2019-17109

Koji through 1.18.0 allows remote Directory Traversal, with resultant Privilege Escalation.
Max CVSS
6.5
EPSS Score
1.19%
Published
2019-10-09
Updated
2019-10-25

CVE-2018-1002150

Koji version 1.12, 1.13, 1.14 and 1.15 contain an incorrect access control vulnerability resulting in arbitrary filesystem read/write access. This vulnerability has been fixed in versions 1.12.1, 1.13.1, 1.14.1 and 1.15.1.
Max CVSS
9.1
EPSS Score
0.13%
Published
2018-04-04
Updated
2022-12-21

CVE-2017-1002153

Koji 1.13.0 does not properly validate SCM paths, allowing an attacker to work around blacklisted paths for build submission.
Max CVSS
7.5
EPSS Score
0.07%
Published
2017-10-06
Updated
2023-03-01
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close