← back
CVE-2020-8161

CVE-2020-8161

EPSS 3.6%CWE-548
A directory traversal vulnerability exists in rack < 2.2.0 that allows an attacker perform directory traversal vulnerability in the Rack::Directory app that is bundled with Rack which could result in information disclosure.
Affected products
n/a · https://github.com/rack/rack

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://groups.google.com/g/rubyonrails-security/c/IOO1vNZTzPAhttps://hackerone.com/reports/434404https://lists.debian.org/debian-lts-announce/2020/07/msg00006.htmlhttps://lists.debian.org/debian-lts-announce/2023/01/msg00038.htmlhttps://usn.ubuntu.com/4561-1/