Security Advisory

CVE-2017-5982

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-02-28 00:00:00

Last updated 2024-08-05 15:18:49

Assigner mitre

State PUBLISHED

Description

Directory traversal vulnerability in the Chorus2 2.4.2 add-on for Kodi allows remote attackers to read arbitrary files via a %2E%2E%252e (encoded dot dot slash) in the image path, as demonstrated by image/image%3A%2F%2F%2e%2e%252fetc%252fpasswd.

← Browse all CVEs View on cve.org ↗