CVE-2019-5437

Summary

Information exposure through the directory listing in npm's harp module allows to access files that are supposed to be ignored according to the harp server rules.Vulnerable versions are <= 0.29.0 and no fix was applied to our knowledge.

Affected Software

VendorProductVersion RangeStatus
n/aharpN/Aaffected

Weaknesses

  • CWE-548: Information Exposure Through Directory Listing (CWE-548)

ADP Enrichment

CVE Program Container

Additional References

References