Описание
It was possible to improperly access the parent directory of an os.Root by opening a filename ending in "../". For example, Root.Open("../") would open the parent directory of the Root. This escape only permits opening the parent directory itself, not ancestors of the parent or files contained within the parent.
EPSS
Процентиль: 0%
0.00003
Низкий
3.8 Low
CVSS3
Дефекты
CWE-23
Связанные уязвимости
CVSS3: 3.8
debian
3 дня назад
It was possible to improperly access the parent directory of an os.Roo ...
CVSS3: 3.8
github
2 дня назад
It was possible to improperly access the parent directory of an os.Root by opening a filename ending in "../". For example, Root.Open("../") would open the parent directory of the Root. This escape only permits opening the parent directory itself, not ancestors of the parent or files contained within the parent.
EPSS
Процентиль: 0%
0.00003
Низкий
3.8 Low
CVSS3
Дефекты
CWE-23