Home

CVE-2021-34363

Description

The thefuck (aka The Fuck) package before 3.31 for Python allows Path Traversal that leads to arbitrary file deletion via the "undo archive operation" feature.

Risk Information

Base Score
9.1
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
EPSS Score
Exploitation Probability
1.125

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2021-34363 are fixed in Python-thefuck 3.31Windows
Vulnerabilities CVE-2021-34363 are fixed in Python-thefuck for linux 3.31Linux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234