CVE-2020-7652

CVE-2020-7652

EPSS 1.7%

All versions of snyk-broker before 4.80.0 are vulnerable to Arbitrary File Read. It allows arbitrary file reads for users with access to Snyk's internal network via directory traversal.

Productos afectados

n/a · snyk-broker

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://snyk.io/vuln/SNYK-JS-SNYKBROKER-570611 https://updates.snyk.io/snyk-broker-security-fixes-152338