2020-05-29 20:40:22
snyk
PUBLISHED
All versions of snyk-broker before 4.80.0 are vulnerable to Arbitrary File Read. It allows arbitrary file reads for users with access to Snyks internal network by creating symlinks to match whitelisted paths.