Security Advisory

CVE-2022-21192

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-01-25 05:00:02

Last updated 2025-04-01 14:54:41

Assigner snyk

State PUBLISHED

Description

All versions of the package serve-lite are vulnerable to Directory Traversal due to missing input sanitization or other checks and protections employed to the req.url passed as-is to path.join().

← Browse all CVEs View on cve.org ↗