Lucene search
GoogleOSV:CVE-2018-3732HistoryJun 07, 2018 - 2:29 a.m.
CVE-2018-3732
2018-06-0702:29:08
Google
osv.dev
4
0.003 Low
EPSS
Percentile
71.6%
resolve-path node module before 1.4.0 suffers from a Path Traversal vulnerability due to lack of validation of paths with certain special characters, which allows a malicious user to read content of any file with known path.
| CPE | Name | Operator | Version |
|---|---|---|---|
| resolve-path | eq | 1.1.0 | |
| resolve-path | eq | 1.3.3 | |
| resolve-path | eq | 1.2.2 | |
| resolve-path | eq | 1.3.0 | |
| resolve-path | eq | 1.2.0 | |
| resolve-path | eq | 1.3.2 | |
| resolve-path | eq | 1.3.1 | |
| resolve-path | eq | 1.0.0 | |
| resolve-path | eq | 1.2.1 |
Related
prion
prion
Path traversal
2018-06-07 02:29:00
veracode
veracode
Path Traversal
2018-02-23 02:43:48
nvd
nvd
CVE-2018-3732
2018-06-07 02:29:08
cvelist
cvelist
CVE-2018-3732
2018-04-26 00:00:00
github
github
Path Traversal in resolve-path
2018-07-18 21:20:25
hackerone
hackerone
Node.js third-party modules: Path Traversal on Resolve-Path
2018-02-13 21:48:00
cve
cve
CVE-2018-3732
2018-06-07 02:29:08
nodejs
nodejs
Path Traversal
2018-04-20 21:48:06
osv
osv
Path Traversal in resolve-path
2018-07-18 21:20:25
