Nixpkgs security tracker

Untriaged

Permalink CVE-2014-2352

created 2 months ago Activity log

Created suggestion 2 months ago

Directory traversal vulnerability in Cogent DataHub before 7.3.5 allows remote …

Directory traversal vulnerability in Cogent DataHub before 7.3.5 allows remote attackers to read arbitrary files of unspecified types, or cause a web-server denial of service, via a crafted pathname.

References

http://ics-cert.us-cert.gov/advisories/ICSA-14-149-02 x_transferredx_refsource_MISC
https://www.cisa.gov/news-events/ics-advisories/icsa-14-149-02
http://cogentdatahub.com/Download_Software.html

Affected products

n/a

==n/a

DataHub

<7.3.5

Matching in nixpkgs

pkgs.python312Packages.cryptodatahub

Repository of cryptography-related data

nixos-25.11 1.0.0
- nixos-25.11-small 1.0.0
- nixpkgs-25.11-darwin 1.0.0

pkgs.python313Packages.cryptodatahub

Repository of cryptography-related data

nixos-unstable 1.0.2
- nixpkgs-unstable 1.0.2
- nixos-unstable-small 1.0.2
nixos-25.11 1.0.0
- nixos-25.11-small 1.0.0
- nixpkgs-25.11-darwin 1.0.0

pkgs.python314Packages.cryptodatahub

Repository of cryptography-related data

nixos-unstable 1.0.2
- nixpkgs-unstable 1.0.2
- nixos-unstable-small 1.0.2

Package maintainers

@wegank Weijia Wang <contact@weijia.wang>
@Prince213 Sizhe Zhao <prc.zhao@outlook.com>
@phanirithvij Phani Rithvij <phanirithvij2000@gmail.com>
@OPNA2608 Cosima Neidahl <opna2608@protonmail.com>
@ethancedwards8 Ethan Carter Edwards <ethan@ethancedwards.com>
@eljamm Fedi Jamoussi <fedi.jamoussi@protonmail.ch>

Suggestion detail

References

Affected products

Matching in nixpkgs

pkgs.python312Packages.cryptodatahub

pkgs.python313Packages.cryptodatahub

pkgs.python314Packages.cryptodatahub

Package maintainers