S3Scanner before 2.0.2 allows Directory Traversal via a crafted bucket, as demonstrated by a <Key>../ substring in a ListBucketResult element.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-11-29T03:00:48

Updated: 2024-08-03T23:17:28.777Z

Reserved: 2021-05-05T00:00:00

Link: CVE-2021-32061

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-11-29T03:15:06.713

Modified: 2024-11-21T06:06:46.940

Link: CVE-2021-32061

cve-icon Redhat

No data.