Zurück zur CVE-Übersicht
CVE-2026-41082
HIGH(7.3)CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L
Risk Signal Score18/100 — NIEDRIG
- CVSS 7.3 — Hoch
EPSS-Score
0%
Exploit-Wahrscheinlichkeit (30 Tage)
CVSS Score
7.3
Technische Schwere
Beschreibung
In OCaml opam before 2.5.1, a .install field containing a destination filepath can use ../ to reach a parent directory.