Hertz v0.3.0 ws discovered to contain a path traversal vulnerability via the normalizePath function.
References
Link | Resource |
---|---|
https://github.com/cloudwego/hertz/issues/228 | Exploit Issue Tracking Third Party Advisory |
https://github.com/cloudwego/hertz/pull/229 | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-09-28T13:34:02
Updated: 2022-09-28T13:34:02
Reserved: 2022-09-06T00:00:00
Link: CVE-2022-40082
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-09-28T14:15:10.907
Modified: 2022-09-29T18:49:37.277
Link: CVE-2022-40082
JSON object: View
Redhat Information
No data.
CWE