transmissionbt Transmission 2.76

CPE Details

transmissionbt Transmission 2.76
transmissionbt
transmission
2.76
2014-07-30
14h24 +00:00
2014-08-01
17h50 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:transmissionbt:transmission:2.76:*:*:*:*:*:*:*

Informations

Vendor

transmissionbt

Product

transmission

Version

2.76

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2018-10756 2020-05-15 13h56 +00:00 Use-after-free in libtransmission/variant.c in Transmission before 3.00 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted torrent file.
7.8
High
CVE-2018-5702 2018-01-15 15h00 +00:00 Transmission through 2.92 relies on X-Transmission-Session-Id (which is not a forbidden header for Fetch) for access control, which allows remote attackers to execute arbitrary RPC commands, and consequently write to arbitrary files, via POST requests to /transmission/rpc in conjunction with a DNS rebinding attack.
8.8
High
CVE-2014-4909 2014-07-29 12h00 +00:00 Integer overflow in the tr_bitfieldEnsureNthBitAlloced function in bitfield.c in Transmission before 2.84 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted peer message, which triggers an out-of-bounds write.
6.8