Search for vulnerabilities
Vulnerability details: VCID-3ny7-bryb-aaad
Vulnerability ID VCID-3ny7-bryb-aaad
Aliases CVE-2010-1511
Summary CVE-2010-1000 CVE-2010-1511 kdenetwork: improper sanitization of metalink attribute for downloading files
Status Published
Exploitability 0.5
Weighted Severity 8.0
Risk 4.0
Affected and Fixed Packages Package Details
Weaknesses (3)
CWE-264 Permissions, Privileges, and Access Controls
CWE-73 External Control of File Name or Path
CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
System Score Found at
epss 0.00829 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.00829 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.00829 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.00829 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.00829 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.00829 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.00829 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.00829 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.00829 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.00829 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.00829 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.00829 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.02348 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.02348 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.02348 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.02348 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.06639 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
epss 0.13369 https://api.first.org/data/v1/epss?cve=CVE-2010-1511
rhbs high https://bugzilla.redhat.com/show_bug.cgi?id=591631
cvssv2 6.4 https://nvd.nist.gov/vuln/detail/CVE-2010-1511
Reference id Reference type URL
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051692.html
http://marc.info/?l=oss-security&m=127378789518426&w=2
http://osvdb.org/64689
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1511.json
https://api.first.org/data/v1/epss?cve=CVE-2010-1511
http://secunia.com/advisories/39528
http://secunia.com/advisories/39787
http://secunia.com/secunia_research/2010-70/
http://securitytracker.com/id?1023984
https://exchange.xforce.ibmcloud.com/vulnerabilities/58629
http://www.kde.org/info/security/advisory-20100513-1.txt
http://www.securityfocus.com/archive/1/511279/100/0/threaded
http://www.securityfocus.com/archive/1/511294/100/0/threaded
http://www.securityfocus.com/bid/40141
http://www.ubuntu.com/usn/USN-938-1
http://www.vupen.com/english/advisories/2010/1142
http://www.vupen.com/english/advisories/2010/1144
http://www.vupen.com/english/advisories/2010/3096
591631 https://bugzilla.redhat.com/show_bug.cgi?id=591631
CVE-2010-1511 https://nvd.nist.gov/vuln/detail/CVE-2010-1511
GLSA-201412-08 https://security.gentoo.org/glsa/201412-08
USN-938-1 https://usn.ubuntu.com/938-1/
No exploits are available.
Vector: AV:N/AC:L/Au:N/C:N/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2010-1511
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.82412
EPSS Score 0.00829
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.