Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:37324
HistorySep 29, 2022 - 4:48 a.m.

Path Traversal

2022-09-2904:48:15
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
path traversal
github.com/cloudwego/hertz
windows server
vulnerability
normalizepath function

0.001 Low

EPSS

Percentile

48.8%

JSON

github.com/cloudwego/hertz is vulnerable to path traversal. The vulnerability exists in normalizePath function of uri.go because the backslash restrictions are not properly implemented which allows an attacker to read any file in windows server.

Related

prion 1
osv 3
cvelist 1
cnvd 1
cve 1
github 1
nvd 1
prion
prion
Path traversal
2022-09-28 14:15:00
osv
osv
CVE-2022-40082
2022-09-28 14:15:10
Hertz contains path traversal via normalizePath function
2022-09-29 00:00:26
Path traversal in github.com/cloudwego/hertz
2022-10-05 18:02:53
cvelist
cvelist
CVE-2022-40082
2022-09-28 13:34:02
cnvd
cnvd
Hertz path traversal vulnerability
2022-09-30 00:00:00
cve
cve
CVE-2022-40082
2022-09-28 14:15:10
github
github
Hertz contains path traversal via normalizePath function
2022-09-29 00:00:26
nvd
nvd
CVE-2022-40082
2022-09-28 14:15:10

0.001 Low

EPSS

Percentile

48.8%

JSON
Related for VERACODE:37324
prion1osv3cvelist1cnvd1cve1github1nvd1