CVE-2021-32061
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in pypi/S3Scanner
Identifiers
CVE-2021-32061
Package Slug
pypi/S3Scanner
Vulnerability
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Description
S3Scanner allows Directory Traversal via a crafted bucket, as demonstrated by a <Key>../ substring in a ListBucketResult element.
Affected Versions
All versions before 2.0.2
Solution
Upgrade to version 2.0.2 or above.
Last Modified
2021-12-01
| source |