CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-3806

A path traversal vulnerability on Pardus Software Center's "extractArchive" function could allow anyone on the same network to do a man-in-the-middle and write files on the system.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 62.7%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 7.1

References

https://pentest.blog/pardus-21-linux-distro-remote-code-execution-0day-2021/
https://www.usom.gov.tr/bildirim/tr-21-0754
https://pentest.blog/pardus-21-linux-distro-remote-code-execution-0day-2021/
https://www.usom.gov.tr/bildirim/tr-21-0754

Products affected by CVE-2021-3806

Tubitak » Pardus Software Center » Version: Any

cpe:2.3:a:tubitak:pardus_software_center:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-3806

Products

Pricing

Contact Us