CVE-2021-21298

🗓️ 26 Feb 2021 17:12:15Reported by [email protected]Type

Node-Red vulnerability fixed in version 1.2.

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
OSV	GHSA-M33V-338H-4V9F Path traversal in Node-Red	26 Feb 202116:31	–	osv
OSV	CVE-2021-21298	26 Feb 202117:15	–	osv
Veracode	Directory Traversal	1 Mar 202105:31	–	veracode
RedhatCVE	CVE-2021-21298	22 May 202518:18	–	redhatcve
Prion	Path traversal	26 Feb 202117:15	–	prion
CVE	CVE-2021-21298	26 Feb 202117:15	–	cve
Github Security Blog	Path traversal in Node-Red	26 Feb 202116:31	–	github
Cvelist	CVE-2021-21298 Path traversal in Node-Red	26 Feb 202116:25	–	cvelist

Nvd

Node

nodered node-redRange<1.2.8node.js

Source	Link
github	www.github.com/node-red/node-red/releases/tag/1.2.8
github	www.github.com/node-red/node-red/commit/74db3e17d075f23d9c95d7871586cf461524c456
npmjs	www.npmjs.com/package/%40node-red/runtime
github	www.github.com/node-red/node-red/security/advisories/GHSA-m33v-338h-4v9f

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Feb 2021 17:15Current

CVSS23.5

CVSS33.5 - 6.5

EPSS0.00365

CWE-22