opendiamond is vulnerable to path traversal. The vulnerability exists due to a lack of sanitization of the Flask send_file
function allowing an attacker to traverse through the directory via the obj_path
.
CPE | Name | Operator | Version |
---|---|---|---|
opendiamond | le | 10.1.1 | |
opendiamond | le | 10.1.1 |
github.com/cmusatyalab/opendiamond/blob/7ded6b5d243fee3f56c978fc37638f9691e8dfec/opendiamond/dataretriever/augment_store.py#L164
github.com/cmusatyalab/opendiamond/commit/398049c187ee644beabab44d6fece82251c1ea56
github.com/cmusatyalab/opendiamond/issues/52
github.com/github/securitylab/issues/669#issuecomment-1117265726