The mkdocs 1.2.2 built-in dev-server allows directory traversal using the port 8000, enabling remote exploitation to obtain :sensitive information. NOTE: the vendor has disputed this as described in https://github.com/mkdocs/mkdocs/issues/2601.] and https://github.com/nisdn/CVE-2021-40978/issues/1
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-10-07T13:23:41
Updated: 2024-08-04T02:59:30.392Z
Reserved: 2021-09-13T00:00:00
Link: CVE-2021-40978
Vulnrichment
Updated: 2024-08-04T02:59:30.392Z
NVD
Status : Modified
Published: 2021-10-07T14:15:08.280
Modified: 2024-08-04T03:15:32.273
Link: CVE-2021-40978
Redhat
No data.