Path Traversal

2022-05-1909:12:02

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.001 Low

EPSS

Percentile

49.0%

JSON

scout_browser is vulnerable to path traversal. The vulnerability exists due to improper handling of file paths which allows a remote attacker to access sensitive data in the system.

CPENameOperatorVersion
scout-browserle2.0.0
scout-browserle4.51
scout-browserle2.0.0
scout-browserle4.51

Name	Operator	Version
scout-browser	le	2.0.0
scout-browser	le	4.51
scout-browser	le	2.0.0
scout-browser	le	4.51

References

github.com/advisories/GHSA-694v-63fq-fmr4

github.com/clinical-genomics/scout/commit/952a2e2319af2d95d22b017a561730feac086ff1

huntr.dev/bounties/7acac778-5ba4-4f02-99e2-e4e17a81e600/

0.001 Low

EPSS

Percentile

49.0%

JSON

Related for VERACODE:35604