puppeteer-renderer v.3.2.0 and before is vulnerable to Directory Traversal. Attackers can exploit the URL parameter using the file protocol to read sensitive information from the server.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-02T03:37:05.327Z
Reserved: 2024-05-30T00:00:00
Link: CVE-2024-36527

Updated: 2024-06-18T14:35:15.674Z

Status : Awaiting Analysis
Published: 2024-06-17T18:15:16.767
Modified: 2024-11-21T09:22:20.213
Link: CVE-2024-36527

No data.