Information Exposure on Case Insensitive File Systems

2018-06-01T22:41:59
ID NODEJS:672
Type nodejs
Reporter tungpun
Modified 2018-07-26T16:50:52

Description

Overview

Versions of serve before 7.0.0 are vulnerable to information exposure, bypassing the ignore security control, but only on case insensitive file systems.

Recommendation

Update to version 7.0.0 or later.

References