Vulnerability Details CVE-2020-36647
A vulnerability classified as critical has been found in YunoHost-Apps transmission_ynh. Affected is an unknown function of the file conf/nginx.conf. The manipulation leads to path traversal. The patch is identified as f136dfd44eda128129e5fd2d850a3a3c600e6a4a. It is recommended to apply a patch to fix this issue. VDB-217638 is the identifier assigned to this vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 21.8%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 5.2
References
- https://github.com/YunoHost-Apps/transmission_ynh/commit/f136dfd44eda128129e5fd2d850a3a3c600e6a4a
- https://github.com/YunoHost-Apps/transmission_ynh/pull/75
- https://vuldb.com/?ctiid.217638
- https://vuldb.com/?id.217638
- https://github.com/YunoHost-Apps/transmission_ynh/commit/f136dfd44eda128129e5fd2d850a3a3c600e6a4a
- https://github.com/YunoHost-Apps/transmission_ynh/pull/75
- https://vuldb.com/?ctiid.217638
- https://vuldb.com/?id.217638
Products affected by CVE-2020-36647
-
cpe:2.3:a:yunohost:transmission_ynh:*