Security Advisory
CVE-2021-35054
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Minecraft before 1.17.1, when online-mode=false is configured, allows path traversal for deletion of arbitrary JSON files.