Aggregates CVE and security vulnerability intelligence across all hibara-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Disclosed issues often relate to vendor risk path handling; exposure may include vendor impact file overwrite in vendor surface software deployment and vendor surface production workloads contexts.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2022-28128 | Untrusted search path vulnerability in AttacheCase ver.3.6.1.0 and earlier allows an attacker to gain privileges and execute arbitrary code via a Trojan horse DLL in an unspecified directory. | [email protected] | 7.8 | 0.08% | 2022-03-31 | 2024-11-21 |
| CVE-2022-25348 | Untrusted search path vulnerability in AttacheCase ver.4.0.2.7 and earlier allows an attacker to gain privileges and execute arbitrary code via a Trojan horse DLL in an unspecified directory. | [email protected] | 7.8 | 0.08% | 2022-03-31 | 2024-11-21 |
| CVE-2018-0660 | Directory traversal vulnerability in ver.2.8.4.0 and earlier and ver.3.3.0.0 and earlier allows an attacker to create arbitrary files via specially crafted ATC file. | [email protected] | 3.3 | 0.21% | 2018-09-07 | 2024-11-21 |
| CVE-2018-0659 | Directory traversal vulnerability in ver.2.8.4.0 and earlier and ver.3.3.0.0 and earlier allows an attacker to create or overwrite existing files via specially crafted ATC file. | [email protected] | 5.5 | 0.29% | 2018-09-07 | 2024-11-21 |
| CVE-2018-0675 | AttacheCase ver.3.3.0.0 and earlier allows an arbitrary script execution via unspecified vectors. | [email protected] | 7.8 | 0.58% | 2018-09-04 | 2024-11-21 |
| CVE-2018-0674 | AttacheCase ver.2.8.4.0 and earlier allows an arbitrary script execution via unspecified vectors. | [email protected] | 7.8 | 0.58% | 2018-09-04 | 2024-11-21 |
| CVE-2017-2272 | Untrusted search path vulnerability in Self-extracting encrypted files created by AttacheCase ver.3.2.2.6 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. | [email protected] | 7.8 | 0.14% | 2017-07-17 | 2026-05-13 |
| CVE-2017-2271 | Untrusted search path vulnerability in Self-extracting encrypted files created by AttacheCase ver.2.8.3.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. | [email protected] | 7.8 | 0.14% | 2017-07-17 | 2026-05-13 |
| CVE-2016-7842 | Directory traversal vulnerability in AttacheCase 2.8.2.8 and earlier and 3.2.0.4 and earlier allows remote attackers to read arbitrary files via specially crafted ATC file. | [email protected] | 5.5 | 6.87% | 2017-04-28 | 2026-05-13 |