Question 1

What is CVE-2023-0593 — CVE-2023-0593?

Accepted Answer

A path traversal vulnerability affects yaffshiv YAFFS filesystem extractor. By crafting a malicious YAFFS file, an attacker could force yaffshiv to write outside of the extraction directory. This issue affects yaffshiv up to version 0.1 included, which is the most recent at time of publication.

Question 2

What is the authoritative source for CVE-2023-0593?

Accepted Answer

CVE-2023-0593 (CVE-2023-0593) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVSS	5.5 ()
Vector	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
EPSS	0.35% probability of exploitation · percentile 27.1% · 2026-06-19T12:03:05Z
Last modified	2026-06-17

CVE-2023-0593CVE-2023-0593

Description

Scoring