CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Tryton: >> Tryton >> 3.2.17 Security Vulnerabilities

CVE-2017-0360

file_open in Tryton 3.x and 4.x through 4.2.2 allows remote authenticated users with certain permissions to read arbitrary files via a "same root name but with a suffix" attack. NOTE: This vulnerability exists because of an incomplete fix for CVE-2016-1242.

CVSS Score

5.3

EPSS Score

0.003

Published

2017-04-04

Page 1

Vulnerabilities

Vulnerable Software

Tryton: >> Tryton >> 3.2.17 Security Vulnerabilities

Products

Pricing

Contact Us