CVE-2022-31520
CVE-2022-31520 affects the Luxas98/logstash-management-api repo (up to 2020-05-04). The vulnerability arises from unsafe use of Flask’s send_file, enabling absolute path traversal. This impact is described as partial confidentiality and partial availability (per CVSS metrics). There are no explic...