Vulnerabilities (CVE)

Filtered by vendor Attic Project Subscribe
Filtered by product Attic
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-4082 1 Attic Project 1 Attic 2024-11-21 4.0 MEDIUM 6.5 MEDIUM
attic before 0.15 does not confirm unencrypted backups with the user, which allows remote attackers with read and write privileges for the encrypted repository to obtain potentially sensitive information by changing the manifest type byte of the repository to "unencrypted / without key file".