CVE-2021-34363 log
| Source |
|
| Severity | Medium |
| Remote | No |
| Type | Arbitrary file overwrite |
| Description | The thefuck package before 3.31 allows path traversal that leads to arbitrary file deletion via the "undo archive operation" feature. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-2062 | thefuck | 3.30-3 | 3.31-1 | Medium | Fixed |
| Date | Advisory | Group | Package | Severity | Type |
|---|---|---|---|---|---|
| 15 Jun 2021 | ASA-202106-39 | AVG-2062 | thefuck | Medium | arbitrary file overwrite |
| References |
|---|
https://vuln.ryotak.me/advisories/48 https://github.com/nvbn/thefuck/commit/e343c577cd7da4d304b837d4a07ab4df1e023092 |