2 matches found
CVE-2021-43795 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in com.linecorp.armeria:armeria
Armeria is an open source microservice framework. In affected versions an attacker can access an Armeria server's local file system beyond its restricted directory by sending an HTTP request whose path contains %2F encoded /, such as /files/..%2Fsecrets.txt, bypassing Armeria's path validation...
CVE-2021-43795
Armeria (an open source microservice framework) is affected by a path traversal issue where an HTTP request containing %2F (encoded slash) in the path can bypass path validation and access the server’s local filesystem beyond its restricted directory (e.g., /files/..%2Fsecrets.txt). The vulnerabi...