Описание
Path traversal in ServiceCenter
Improper configuration will cause ServiceComb ServiceCenter Directory Traversal problem in ServcieCenter 1.x.x versions and fixed in 2.0.0.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2021-21501
- https://github.com/apache/servicecomb-service-center/pull/788
- https://github.com/apache/servicecomb-service-center/commit/f4f44fe5d4a7e530ca8ee7c6f2c9e891ae8353c9
- https://lists.apache.org/thread.html/r337be65e504eac52a12e89d7de40345e5d335deee9dd7288f7f59b81%40%3Cdev.servicecomb.apache.org%3E
- http://www.openwall.com/lists/oss-security/2021/08/10/3
Пакеты
Наименование
github.com/apache/servicecomb-service-center
go
Затронутые версииВерсия исправления
< 2.0.0
2.0.0
Связанные уязвимости
CVSS3: 7.5
nvd
больше 4 лет назад
Improper configuration will cause ServiceComb ServiceCenter Directory Traversal problem in ServcieCenter 1.x.x versions and fixed in 2.0.0.