CVE-2022-35410

CVE-2022-35410

mat2 (aka metadata anonymisation toolkit) before 0.13.0 allows ../ directory traversal during the ZIP archive cleaning process. This primarily affects mat2 web instances, in which clients could obtain sensitive information via a crafted archive.

Source: CVE-2022-35410

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다