Path Traversal Vulnerability in Pardus Software Center's extractArchive Function Enables Unauthorized File Manipulation

Path Traversal Vulnerability in Pardus Software Center's extractArchive Function Enables Unauthorized File Manipulation

CVE-2021-3806 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

A path traversal vulnerability on Pardus Software Center's "extractArchive" function could allow anyone on the same network to do a man-in-the-middle and write files on the system.

Learn more about our Network Penetration Testing.