Vulnerability Database
296,748
Total vulnerabilities in the database
CVE-2025-58355
Attackers can create/override arbitrary files with uncontrolled data.
For a PoC, spin up an instance of soft-serve as explained in the README, and execute the following command:
ssh -p23231 localhost repo commit icecream -- --output=/tmp/pwned
It should have created a file in /tmp/pwned.
| Software | From | Fixed in |
|---|---|---|
github.com/charmbracelet/soft-serve
|
- | 0.10.0 |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime