0.092 Low
EPSS
Percentile
94.7%
In Node-RED-Dashboard before 2.26.2 there is a path traversal vulnerability. It allows ui_base/js/…%2f directory traversal to read files.
github.com/node-red/node-red-dashboard/commit/f48f356df966f607ba3d09c27396074b81f2ae97
github.com/node-red/node-red-dashboard/issues/669
github.com/node-red/node-red-dashboard/releases/tag/2.26.2
nvd.nist.gov/vuln/detail/CVE-2021-3223
www.npmjs.com/package/node-red-dashboard