CVE-2020-7651

Summary

All versions of snyk-broker before 4.79.0 are vulnerable to Arbitrary File Read. It allows partial file reads for users who have access to Snyk's internal network via patch history from GitHub Commits API.

Affected Software

VendorProductVersion RangeStatus
n/asnyk-brokerall versions before 4.79.0affected

Weaknesses

  • Arbitrary File Read

ADP Enrichment

CVE Program Container

Additional References

References