This page aggregates publicly disclosed CVE and security risk information related to bigfile, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2022-23766 | An improper input validation vulnerability leading to arbitrary file execution was discovered in BigFileAgent. In order to cause arbitrary files to be executed, the attacker makes the victim access a web page d by them or inserts a script using XSS into a general website. | [email protected] | 7.8 | 0.48% | 2022-09-19 | 2024-11-21 |
| CVE-2021-26619 | An path traversal vulnerability leading to delete arbitrary files was discovered in BigFileAgent. Remote attackers can use this vulnerability to delete arbitrary files of unspecified number of users. | [email protected] | 7.1 | 0.87% | 2022-02-18 | 2024-11-21 |