Versions of the package glance before 3.0.9 are vulnerable to Directory Traversal that allows users to read files outside the public root directory. This is related to but distinct from the vulnerability reported in [CVE-2018-3715](https://security.snyk.io/vuln/npm:glance:20180129).
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: snyk
Published: 2023-02-13T05:00:01.128Z
Updated: 2024-08-03T04:49:44.550Z
Reserved: 2022-02-24T11:58:27.018Z
Link: CVE-2022-25937
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-02-13T05:15:12.807
Modified: 2023-11-07T03:44:53.567
Link: CVE-2022-25937
Redhat
No data.