Lucene search
Veracode Vulnerability DatabaseVERACODE:8123HistoryJan 08, 2019 - 5:57 a.m.
Directory Traversal
2019-01-0805:57:20
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
0.002 Low
EPSS
Percentile
52.7%
apache thrift is vulnerable to directory traversal attack. The attack is possible via the set webservers docroot path which was not handled properly.
| CPE | Name | Operator | Version |
|---|---|---|---|
| thrift | le | 0.11.0 | |
| thrift | le | 0.11.0 | |
| github.com/apache/thrift | eq | HEAD | |
| github.com/apache/thrift | le | 0.11.0 | |
| git.apache.org/thrift.git | le | 0.11.0 |
Related
cve
cve
CVE-2018-11798
2019-01-07 18:00:00
osv
osv
CVE-2018-11798
2019-01-07 17:29:00
Apache Thrift Node.js static web server sandbox escape
2019-01-17 13:56:33
redhatcve
redhatcve
CVE-2018-11798
2019-01-17 17:19:17
debiancve
debiancve
CVE-2018-11798
2019-01-07 18:00:00
cvelist
cvelist
CVE-2018-11798
2019-01-07 18:00:00
prion
prion
Path traversal
2019-01-07 17:29:00
github
github
Apache Thrift Node.js static web server sandbox escape
2019-01-17 13:56:33
nvd
nvd
CVE-2018-11798
2019-01-07 17:29:00
cgr
cgr
CVE-2018-11798 vulnerabilities
2024-05-19 03:07:16
ubuntucve
ubuntucve
CVE-2018-11798
2019-01-07 00:00:00
wolfi
wolfi
CVE-2018-11798 vulnerabilities
2024-07-08 03:08:44
nessus
nessus
EulerOS Virtualization 3.0.1.0 : thrift (EulerOS-SA-2019-1458)
2019-05-14 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for thrift (EulerOS-SA-2019-1458)
2020-01-23 00:00:00
ibm
ibm
redhat
redhat
(RHSA-2019:1545) Important: Red Hat Fuse 7.3.1 security update
2019-06-18 19:49:16
oracle
oracle
Oracle Critical Patch Update Advisory - October 2019
2020-01-22 00:00:00