Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2025-28384
CVE-2025-28384
An issue in the /script-api/scripts/ endpoint of OpenC3 COSMOS before 6.1.0 allows attackers to execute a directory traversal.
Published Oct 28, 2025
https://github.com/advisories/GHSA-p67j-387g-75wc
CVSS Score
Critical
9.1
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
gem
openc3-cosmos-tool-iframe
6.0.0
1-1 of 1
CVE-2025-28384 | Components Impacted | Sonatype Guide | Sonatype Guide
