{ "affected": [ { "database_specific": { "unresolved_ranges": [ { "events": [ { "introduced": "0" }, { "last_affected": "5.1.0-alpha" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "5.1.0-alpha2" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "5.1.0-alpha3" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "5.1.0-beta1" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "5.1.0-beta2" } ] } ] }, "ranges": [ { "database_specific": { "versions": [ { "introduced": "0" }, { "last_affected": "5.0.12" } ] }, "events": [ { "introduced": "0" }, { "last_affected": "45e0787a7457c1b9071522463aa902d59ae3a2ee" } ], "repo": "https://github.com/stepmania/stepmania", "type": "GIT" } ] } ], "details": "The component /rootfs in RageFile of Stepmania v5.1b2 and below allows attackers access to the entire file system.", "id": "CVE-2022-25010", "modified": "2026-03-13T21:52:45.642546860Z", "published": "2022-03-01T23:15:09.047Z", "references": [ { "type": "FIX", "url": "https://github.com/stepmania/stepmania/pull/2184" } ], "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "type": "CVSS_V3" } ] }