CVE-2021-23357

🗓️ 15 Mar 2021 17:21:15Reported by snykType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 23 Views

All versions of github.com/tyktechnologies/tyk/gateway are vulnerable to Directory Traversal via the handleAddOrUpdateApi function

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 4
Cvelist	CVE-2021-23357 Directory Traversal	15 Mar 202116:45	–	cvelist
Prion	Directory traversal	15 Mar 202117:15	–	prion
Veracode	Arbitrary File Delete	16 Mar 202101:23	–	veracode
NVD	CVE-2021-23357	15 Mar 202117:15	–	nvd

Nvd

Node

tyk tyk

[
  {
    "product": "github.com/TykTechnologies/tyk/gateway",
    "vendor": "n/a",
    "versions": [
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
github	www.github.com/TykTechnologies/tyk/issues/3390
snyk	www.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMTYKTECHNOLOGIESTYKGATEWAY-1078516

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

15 Mar 2021 17:15Current

4.6Medium risk

Vulners AI Score4.6

CVSS24.6

CVSS33.3 - 5.3

EPSS0.00047

CWE-22