Vulnerability Database

296,213

Total vulnerabilities in the database

CVE-2017-0360

file_open in Tryton 3.x and 4.x through 4.2.2 allows remote authenticated users with certain permissions to read arbitrary files via a "same root name but with a suffix" attack. NOTE: This vulnerability exists because of an incomplete fix for CVE-2016-1242.

  • Published: Apr 4, 2017
  • Updated: Apr 13, 2023
  • CVE: CVE-2017-0360
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.3
  • AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

  • Severity: Low
  • Score: 3.5
  • AV:N/AC:M/Au:S/C:P/I:N/A:N

CWEs:

Software From Fixed in
tryton / tryton 3.2.8 3.2.8.x
tryton / tryton 3.4.17 3.4.17.x
tryton / tryton 3.8.14 3.8.14.x
tryton / tryton 3.8.13 3.8.13.x
tryton / tryton 3.4.4 3.4.4.x
tryton / tryton 3.2.9 3.2.9.x
tryton / tryton 3.2.16 3.2.16.x
tryton / tryton 3.0.14 3.0.14.x
tryton / tryton 3.6.14 3.6.14.x
tryton / tryton 3.8.10 3.8.10.x
tryton / tryton 3.8.4 3.8.4.x
tryton / tryton 3.0.13 3.0.13.x
tryton / tryton 3.2.10 3.2.10.x
tryton / tryton 3.0.15 3.0.15.x
tryton / tryton 3.0.3 3.0.3.x
tryton / tryton 3.4.13 3.4.13.x
tryton / tryton 3.8.2 3.8.2.x
tryton / tryton 3.6.6 3.6.6.x
tryton / tryton 3.0.10 3.0.10.x
tryton / tryton 3.0.12 3.0.12.x
tryton / tryton 3.0.7 3.0.7.x
tryton / tryton 3.4.3 3.4.3.x
tryton / tryton 3.8.7 3.8.7.x
tryton / tryton 3.0.16 3.0.16.x
tryton / tryton 3.6.7 3.6.7.x
tryton / tryton 3.2.3 3.2.3.x
tryton / tryton 3.6.16 3.6.16.x
tryton / tryton 3.8.5 3.8.5.x
tryton / tryton 3.4.16 3.4.16.x
tryton / tryton 3.0.4 3.0.4.x
tryton / tryton 3.0.5 3.0.5.x
tryton / tryton 3.2.7 3.2.7.x
tryton / tryton 3.6.15 3.6.15.x
tryton / tryton 3.8.12 3.8.12.x
tryton / tryton 3.4.9 3.4.9.x
tryton / tryton 3.2.17 3.2.17.x
tryton / tryton 3.6.4 3.6.4.x
tryton / tryton 3.6.8 3.6.8.x
tryton / tryton 3.6.2 3.6.2.x
tryton / tryton 3.6.9 3.6.9.x
tryton / tryton 3.4.2 3.4.2.x
tryton / tryton 3.0.9 3.0.9.x
tryton / tryton 3.4.1 3.4.1.x
tryton / tryton 3.8.1 3.8.1.x
tryton / tryton 3.2.4 3.2.4.x
tryton / tryton 3.4.6 3.4.6.x
tryton / tryton 3.2.15 3.2.15.x
tryton / tryton 3.4.10 3.4.10.x
tryton / tryton 3.2.1 3.2.1.x
tryton / tryton 3.6.1 3.6.1.x
tryton / tryton 3.4.5 3.4.5.x
tryton / tryton 3.8.8 3.8.8.x
tryton / tryton 3.8.11 3.8.11.x
tryton / tryton 3.6.10 3.6.10.x
tryton / tryton 3.4.0 3.4.0.x
tryton / tryton 3.2.13 3.2.13.x
tryton / tryton 3.2.12 3.2.12.x
tryton / tryton 3.6.12 3.6.12.x
tryton / tryton 3.0.8 3.0.8.x
tryton / tryton 3.6.5 3.6.5.x
tryton / tryton 3.0.2 3.0.2.x
tryton / tryton 3.4.12 3.4.12.x
tryton / tryton 3.4.11 3.4.11.x
tryton / tryton 3.8.9 3.8.9.x
tryton / tryton 3.2.2 3.2.2.x
tryton / tryton 3.0.17 3.0.17.x
tryton / tryton 3.2.6 3.2.6.x
tryton / tryton 3.2.11 3.2.11.x
tryton / tryton 3.6.3 3.6.3.x
tryton / tryton 3.2.5 3.2.5.x
tryton / tryton 3.4.14 3.4.14.x
tryton / tryton 3.2.14 3.2.14.x
tryton / tryton 3.8.6 3.8.6.x
tryton / tryton 3.4.15 3.4.15.x
tryton / tryton 3.6.11 3.6.11.x
tryton / tryton 3.8.3 3.8.3.x
tryton / tryton 3.6.0 3.6.0.x
tryton / tryton 3.0.1 3.0.1.x
tryton / tryton 3.0.6 3.0.6.x
tryton / tryton 3.4.8 3.4.8.x
tryton / tryton 3.6.13 3.6.13.x
tryton / tryton 3.8.0 3.8.0.x
tryton / tryton 3.0.0 3.0.0.x
tryton / tryton 3.0.11 3.0.11.x
tryton / tryton 3.4.7 3.4.7.x
tryton / tryton 3.2.0 3.2.0.x
tryton / tryton 4.0.5 4.0.5.x
tryton / tryton 4.2.1 4.2.1.x
tryton / tryton 4.0.7 4.0.7.x
tryton / tryton 4.0.0 4.0.0.x
tryton / tryton 4.0.2 4.0.2.x
tryton / tryton 4.0.1 4.0.1.x
tryton / tryton 4.2.0 4.2.0.x
tryton / tryton 4.0.9 4.0.9.x
tryton / tryton 4.0.4 4.0.4.x
tryton / tryton 4.0.6 4.0.6.x
tryton / tryton 4.2.2 4.2.2.x
tryton / tryton 4.0.3 4.0.3.x
tryton / tryton 4.0.8 4.0.8.x