https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Wed, 24 Jun 2026 02:48:29 +0000 https://vulnerability.circl.lu/sighting/6024a6e5-33f7-4aed-8e7c-ec9eb275b1c8/export {"uuid": "6024a6e5-33f7-4aed-8e7c-ec9eb275b1c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46171", "type": "seen", "source": "https://t.me/cibsecurity/55242", "content": "\u203c CVE-2022-46171 \u203c\n\nTauri is a framework for building binaries for all major desktop platforms. The filesystem glob pattern wildcards `*`, `?`, and `[...]` match file path literals and leading dots by default, which unintentionally exposes sub folder content of allowed paths. Scopes without the wildcards are not affected. As `**` allows for sub directories the behavior there is also as expected. The issue has been patched in the latest release and was backported into the currently supported 1.x branches. There are no known workarounds at the time of publication.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-23T16:14:26.000000Z"} {"uuid": "6024a6e5-33f7-4aed-8e7c-ec9eb275b1c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46171", "type": "seen", "source": "https://t.me/cibsecurity/55242", "content": "\u203c CVE-2022-46171 \u203c\n\nTauri is a framework for building binaries for all major desktop platforms. The filesystem glob pattern wildcards `*`, `?`, and `[...]` match file path literals and leading dots by default, which unintentionally exposes sub folder content of allowed paths. Scopes without the wildcards are not affected. As `**` allows for sub directories the behavior there is also as expected. The issue has been patched in the latest release and was backported into the currently supported 1.x branches. There are no known workarounds at the time of publication.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-23T16:14:26.000000Z"} https://vulnerability.circl.lu/sighting/6024a6e5-33f7-4aed-8e7c-ec9eb275b1c8/export Fri, 23 Dec 2022 16:14:26 +0000 https://vulnerability.circl.lu/sighting/006cff0b-d602-4b62-a6b5-688c88b36e04/export {"uuid": "006cff0b-d602-4b62-a6b5-688c88b36e04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46171", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/11750", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-46171\n\ud83d\udd25 CVSS Score: 6.8 (cvssV3_1, Vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N)\n\ud83d\udd39 Description: Tauri is a framework for building binaries for all major desktop platforms. The filesystem glob pattern wildcards `*`, `?`, and `[...]` match file path literals and leading dots by default, which unintentionally exposes sub folder content of allowed paths. Scopes without the wildcards are not affected. As `**` allows for sub directories the behavior there is also as expected. The issue has been patched in the latest release and was backported into the currently supported 1.x branches. There are no known workarounds at the time of publication.\n\ud83d\udccf Published: 2022-12-23T13:47:56.494Z\n\ud83d\udccf Modified: 2025-04-15T03:17:21.623Z\n\ud83d\udd17 References:\n1. https://github.com/tauri-apps/tauri/security/advisories/GHSA-6mv3-wm7j-h4w5\n2. https://github.com/tauri-apps/tauri/commit/72389b00d7b495ffd7750eb1e75a3b8537d07cf3\n3. https://github.com/tauri-apps/tauri/commit/f0602e7c294245ab6ef6fbf2a976ef398340ef58", "creation_timestamp": "2025-04-15T03:54:31.000000Z"} {"uuid": "006cff0b-d602-4b62-a6b5-688c88b36e04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46171", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/11750", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-46171\n\ud83d\udd25 CVSS Score: 6.8 (cvssV3_1, Vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N)\n\ud83d\udd39 Description: Tauri is a framework for building binaries for all major desktop platforms. The filesystem glob pattern wildcards `*`, `?`, and `[...]` match file path literals and leading dots by default, which unintentionally exposes sub folder content of allowed paths. Scopes without the wildcards are not affected. As `**` allows for sub directories the behavior there is also as expected. The issue has been patched in the latest release and was backported into the currently supported 1.x branches. There are no known workarounds at the time of publication.\n\ud83d\udccf Published: 2022-12-23T13:47:56.494Z\n\ud83d\udccf Modified: 2025-04-15T03:17:21.623Z\n\ud83d\udd17 References:\n1. https://github.com/tauri-apps/tauri/security/advisories/GHSA-6mv3-wm7j-h4w5\n2. https://github.com/tauri-apps/tauri/commit/72389b00d7b495ffd7750eb1e75a3b8537d07cf3\n3. https://github.com/tauri-apps/tauri/commit/f0602e7c294245ab6ef6fbf2a976ef398340ef58", "creation_timestamp": "2025-04-15T03:54:31.000000Z"} https://vulnerability.circl.lu/sighting/006cff0b-d602-4b62-a6b5-688c88b36e04/export Tue, 15 Apr 2025 03:54:31 +0000