CVE-2022-1554
6.8
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:L
Summary
Path Traversal due to send_file call in GitHub repository clinical-genomics/scout prior to 4.52.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| clinical-genomics | clinical-genomics/scout | unspecified < 4.52 | affected |
Weaknesses
- CWE-36: CWE-36 Absolute Path Traversal
ADP Enrichment
CVE Program Container
Additional References
- https://huntr.dev/bounties/7acac778-5ba4-4f02-99e2-e4e17a81e600
- https://github.com/clinical-genomics/scout/commit/952a2e2319af2d95d22b017a561730feac086ff1
References
- https://huntr.dev/bounties/7acac778-5ba4-4f02-99e2-e4e17a81e600
- https://github.com/clinical-genomics/scout/commit/952a2e2319af2d95d22b017a561730feac086ff1
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.