{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-14T09:15:26.142","vulnerabilities":[{"cve":{"id":"CVE-2024-10933","sourceIdentifier":"9119a7d8-5eab-497f-8521-727c672e3725","published":"2024-12-05T20:15:21.417","lastModified":"2025-09-23T12:54:18.160","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In OpenBSD 7.5 before errata 009 and OpenBSD 7.4 before errata 022, exclude any '/' in readdir name validation to avoid unexpected directory traversal on untrusted file systems."},{"lang":"es","value":"En OpenBSD 7.5 antes de la errata 009 y OpenBSD 7.4 antes de la errata 022, excluya cualquier '/' en la validaciĆ³n del nombre readdir para evitar un directory traversal inesperado en sistemas de archivos que no sean de confianza."}],"metrics":{"cvssMetricV40":[{"source":"9119a7d8-5eab-497f-8521-727c672e3725","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":4.1,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"ACTIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"9119a7d8-5eab-497f-8521-727c672e3725","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","baseScore":5.0,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.3,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"9119a7d8-5eab-497f-8521-727c672e3725","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:*:*:*:*:*:*:*:*","versionEndExcluding":"7.4","matchCriteriaId":"D679C29F-8245-4A14-AC52-BC9F5EF8DC9B"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:-:*:*:*:*:*:*","matchCriteriaId":"AC3B964B-B0DA-4ED4-92CA-22CA55FB1799"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_001:*:*:*:*:*:*","matchCriteriaId":"6AFCBC1B-71F7-48E0-B276-8FDC3150E6CD"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_002:*:*:*:*:*:*","matchCriteriaId":"DD66EC2F-ACFA-436D-81AB-AB1B0DF9A262"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_003:*:*:*:*:*:*","matchCriteriaId":"17D59A8B-EAE5-4E22-939A-EB7DF64A6F77"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_004:*:*:*:*:*:*","matchCriteriaId":"B6CAD278-E505-40F7-9FDB-EF46E38CBECA"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_005:*:*:*:*:*:*","matchCriteriaId":"985AA19C-C3F9-4DD3-BFE8-CF481D6FFC42"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_006:*:*:*:*:*:*","matchCriteriaId":"86698949-1025-4EFA-814C-D66DF8FC22E9"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_007:*:*:*:*:*:*","matchCriteriaId":"04776818-C23B-460A-81C2-FF0E99DFD7CE"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_008:*:*:*:*:*:*","matchCriteriaId":"2A491657-819C-407D-8CE7-3F22857C20D4"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_009:*:*:*:*:*:*","matchCriteriaId":"8BB8DEB9-C6D2-443E-AF59-6F9041511F14"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_010:*:*:*:*:*:*","matchCriteriaId":"5B950A6E-CF52-46BF-8ACA-EB7013406BD6"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_011:*:*:*:*:*:*","matchCriteriaId":"7127734F-4434-4A81-842E-6C4263118DE5"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_012:*:*:*:*:*:*","matchCriteriaId":"61C72FF4-2FCA-4DF6-A290-E9DBDA960F7E"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_013:*:*:*:*:*:*","matchCriteriaId":"593087F6-2F44-42E7-97E8-8892A9039F8A"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_014:*:*:*:*:*:*","matchCriteriaId":"EC15CFD5-7347-4BC7-AED0-FF679F1D9901"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_015:*:*:*:*:*:*","matchCriteriaId":"EA6F5029-7EF5-48DA-AA7D-E71D30609B59"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_016:*:*:*:*:*:*","matchCriteriaId":"EF51BAF3-2DBF-4168-81A5-50098FCB9632"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_017:*:*:*:*:*:*","matchCriteriaId":"E8EBB1C5-6A72-4DE7-B13D-E1F3CA7492A0"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_018:*:*:*:*:*:*","matchCriteriaId":"75E72DB3-4B70-4CEC-8E6F-185319899C19"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_019:*:*:*:*:*:*","matchCriteriaId":"01BE65E3-E5A9-41F9-8C80-B901F30DC92A"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_020:*:*:*:*:*:*","matchCriteriaId":"B344BAB4-0DA9-4CB4-AF05-685B658EE500"},{"vulnerable":true,"criteria":"cpe:2.3:o:openbsd:openbsd:7.4:errata_021:*:*:*:*:*:*","matchCriteriaId":"4E385693-C25A-4100-9295-D4EB0D4585E1"}]}]}],"references":[{"url":"https://ftp.openbsd.org/pub/OpenBSD/patches/7.4/common/022_readdir.patch.sig","source":"9119a7d8-5eab-497f-8521-727c672e3725","tags":["Patch"]},{"url":"https://ftp.openbsd.org/pub/OpenBSD/patches/7.5/common/009_readdir.patch.sig","source":"9119a7d8-5eab-497f-8521-727c672e3725","tags":["Patch"]}]}}]}