Lucene search
+L

EUVD-2021-0559

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType 
euvd
 euvd
🔗 euvd.enisa.europa.eu👁 6 Views

Node-Red 1.2.7 has a vulnerability allowing file access via Projects API; fixed in version 1.2.8.

Related
Affected
Refs
ReporterTitlePublishedViews
Family
Circl
CVE-2021-21298
26 Feb 202120:39
circl
CNNVD
Node-RED Path Traversal Vulnerability
26 Feb 202100:00
cnnvd
CVE
CVE-2021-21298
26 Feb 202116:25
cve
Cvelist
CVE-2021-21298 Path traversal in Node-Red
26 Feb 202116:25
cvelist
Github Security Blog
Path traversal in Node-Red
26 Feb 202116:31
github
NVD
CVE-2021-21298
26 Feb 202117:15
nvd
OSV
GHSA-M33V-338H-4V9F Path traversal in Node-Red
26 Feb 202116:31
osv
Prion
Path traversal
26 Feb 202117:15
prion
RedhatCVE
CVE-2021-21298
22 May 202518:18
redhatcve
Veracode
Directory Traversal
1 Mar 202105:31
veracode
Rows per page
[
  {
    "enisaIdVendor": [
      {
        "id": "0f2ec1bf-95b1-3b50-84ee-0e5070ff1279",
        "vendor": {
          "name": "node-red"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "a4ac454b-21b5-3e4c-84da-c881877ddb0f",
        "product": {
          "name": "node-red"
        },
        "product_version": "< 1.2.8"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

07 Oct 2025 00:30Current
6.4Medium risk
Vulners AI Score6.4
CVSS 3.13.5 - 6.5
CVSS 23.5
EPSS0.01177
6