Aria2 Project - Aria2 CVE

Filtered by vendor Aria2 Project Subscribe

Filtered by product Aria2

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-3500	3 Aria2 Project, Debian, Fedoraproject	3 Aria2, Debian Linux, Fedora	2021-12-31	2.1 LOW	7.8 HIGH
aria2c in aria2 1.33.1, when --log is used, can store an HTTP Basic Authentication username and password in a file, which might allow local users to obtain sensitive information by reading this file.

Vulnerabilities (CVE)