☰

New CVE information avialable

CERT.LV is publishing new CVE information.

 

  • CVE-2015-8275

Vulnerable software:

- "eParakstitajs 3.0" (1.3.0)

- "edoc-libraries-2.5.4_01"

Software vendor: LVRTC http://www.lvrtc.lv

Short description:

Possible to write arbitrary files to the filesystem by creating specifically crafted EDOC files (tested versions EDOC 1.01, EDOC 2.0).

 

  • CVE-2015-8276

Vulnerable software:

- "eParakstitajs 3.0" (1.3.0)

- "edoc-libraries-2.5.4_01"

Software vendor: LVRTC http://www.lvrtc.lv

Short description:

Possible to read arbitrary files from the filesystem by creating specifically crafted EDOC files (tested versions EDOC 1.01, EDOC 2.0).