CVE-2026-1020
published 2026-01-16CVE-2026-1020: Police Statistics Database System developed by Gotac has a Absolute Path Traversal vulnerability, allowing unauthenticated remote attackers to enumerate the…
PriorityP338medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
EPSS
0.46%
36.6th percentile
Police Statistics Database System developed by Gotac has a Absolute Path Traversal vulnerability, allowing unauthenticated remote attackers to enumerate the system file directory.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| gotac | police_statistics_database_system | <= 1.0.3 | — |
CVSS provenance
nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
nvdv4.06.9MEDIUMCVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2026-43341 kernel: net/ipv6: ioam6: prevent schema length wraparound in trace fill
bugzilla·2026-05-08
CVE-2026-43341 [HIGH] CVE-2026-43341 kernel: net/ipv6: ioam6: prevent schema length wraparound in trace fill
CVE-2026-43341 kernel: net/ipv6: ioam6: prevent schema length wraparound in trace fill
In the Linux kernel, the following vulnerability has been resolved:
net/ipv6: ioam6: prevent schema length wraparound in trace fill
ioam6_fill_trace_data() stores the schema contribution to the trace
length in a u8. With bit 22 enabled and the largest schema payload,
sclen becomes 1 + 1020 / 4, wraps from 256 to 0, and bypasses the
remaining-space check. __ioam6_fill_trace_data() then positions the
write cursor without reserving the schema area but still copies the
4-byte schema header and the full schema payload, overrunning the trace
buffer.
Keep sclen in an unsigned int so the remaining-space check and the write
cursor calculation both see the full schema length.
Discussion:
Upstream advisory:
h
Bugzilla
CVE-2026-3865 csi-driver-smb: Kubernetes CSI Driver for SMB: Path Traversal vulnerability allows unauthorized file operations via insufficient subDir validation.
bugzilla·2026-04-14
CVE-2026-3865 [MEDIUM] CVE-2026-3865 csi-driver-smb: Kubernetes CSI Driver for SMB: Path Traversal vulnerability allows unauthorized file operations via insufficient subDir validation.
CVE-2026-3865 csi-driver-smb: Kubernetes CSI Driver for SMB: Path Traversal vulnerability allows unauthorized file operations via insufficient subDir validation.
A vulnerability was discovered in the Kubernetes CSI Driver for SMB where the subDir parameter in volume identifiers was insufficiently validated. Attackers with the ability to create PersistentVolumes referencing the SMB CSI driver could craft volume identifiers containing path traversal sequences (../). During volume deletion or cleanup operations, the driver could operate on unintended directories outside the intended managed path within the SMB export.
https://github.com/kubernetes-csi/csi-driver-smb/pull/1020
2026-01-16
Published