CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Id: >> Libdigidoc Security Vulnerabilities

CVE-2013-5648

Absolute path traversal vulnerability in the handleStartDataFile function in DigiDocSAXParser.c in libdigidoc 3.6.0.0, as used in ID-software before 3.7.2 and other products, allows remote attackers to overwrite arbitrary files via a filename beginning with / (slash) or \ (backslash) in a DDOC file.

CVSS Score

6.8

EPSS Score

0.01

Published

2013-08-29

Page 1

Vulnerabilities

Vulnerable Software

Id: >> Libdigidoc Security Vulnerabilities

Products

Pricing

Contact Us