0.002 Low
EPSS
Percentile
55.6%
Versions of node-srv before 2.1.1 are vulnerable to path traversal allowing a remote attacker to read files from the server that uses node-srv.
node-srv
Update to version 2.1.1 or later.
github.com/advisories/GHSA-52r9-g5g6-2hjp
hackerone.com/reports/309124
nvd.nist.gov/vuln/detail/CVE-2018-3714
www.npmjs.com/advisories/588