This affects the package bikeshed before 3.0.0. This can occur when an untrusted source file containing include, include-code or include-raw block is processed. The contents of arbitrary files could be disclosed in the HTML output.
References
Link | Resource |
---|---|
https://github.com/tabatkins/bikeshed/commit/b2f668fca204260b1cad28d5078e93471cb6b2dd | Patch Third Party Advisory |
https://snyk.io/vuln/SNYK-PYTHON-BIKESHED-1537647 | Exploit Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: snyk
Published: 2021-08-16T00:00:00
Updated: 2021-08-16T07:55:09
Reserved: 2021-01-08T00:00:00
Link: CVE-2021-23423
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-08-16T08:15:11.393
Modified: 2021-08-24T11:15:34.163
Link: CVE-2021-23423
JSON object: View
Redhat Information
No data.
CWE