CVE-2022-31540

CVE-2022-31540 affects the kumardeepak/hin-eng-preprocessing repository, wherein an unsafe use of Flask’s send_file through 2019-07-16 enables absolute path traversal. The issue is documented across multiple sources (NVD, Red Hat, CVE lists) with CVSS metrics indicating a high impact on confident...