CVE-2021-23797
Description
All versions of package http-server-node are vulnerable to Directory Traversal via use of --path-as-is.
CWE
- (none)
Affected
- n/a / http-server-node — v=0 <unspecified [affected]
CVSS
- 3.1 score=7.5 severity=HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
References
- https://snyk.io/vuln/SNYK-JS-HTTPSERVERNODE-1727656 x_refsource_MISC
Source
cvelistV5-main/cves/2021/23xxx/CVE-2021-23797.json