CVE-2022-31573

The chainer/chainerrl-visualizer repository through 0.1.1 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

CVE-2022-31573

The chainer/chainerrl-visualizer repository through 0.1.1 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

Path traversal

The chainer/chainerrl-visualizer repository through 0.1.1 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

CVE-2022-31573

CVE-2022-31573 affects the chainer/chainerrl-visualizer project (up to version 0.1.1). The vulnerability arises from unsafe use of Flask send_file, enabling absolute path traversal and potential access to arbitrary files on the server. Multiple connected sources (Red Hat, Veracode, CNVD, OSV, CNV...

chainerrl-visualizer 路径遍历漏洞

chainerrl-visualizer is Chainer's open source way to visually analyze the behavior of ChainerRL agents to make debugging easier. chainerrl-visualizer suffers from a path traversal vulnerability that stems from a failure of the Flask sendfile function to properly filter the resource or file path f...