Security Advisory

CVE-2019-11879

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-05-10 16:00:31

Last updated 2024-08-04 23:03:32

Assigner mitre

State PUBLISHED

Description

The WEBrick gem 1.4.2 for Ruby allows directory traversal if the attacker once had local access to create a symlink to a location outside of the web root directory. NOTE: The vendor states that this is analogous to Options FollowSymlinks in the Apache HTTP Server, and therefore it is "not a problem.

← Browse all CVEs View on cve.org ↗