Связанные уязвимости
CVSS3: 7.8
redhat
около 4 лет назад
A flaw was found in python-babel. A path traversal vulnerability was found in how locale data files are checked and loaded within python-babel, allowing a local attacker to trick an application that uses python-babel to load a file outside of the intended locale directory. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability.
github
около 3 лет назад
Relative Path Traversal in Babel 2.9.0 allows an attacker to load arbitrary locale files on disk and execute arbitrary code.
oracle-oval
больше 3 лет назад
ELSA-2021-4201: babel security and bug fix update (MODERATE)