Potential arbitrary file read vulnerability in yard server
Published: November 28, 2017
SECURITY IDENTIFIERS
- CVE: CVE-2017-17042 (NVD)
- GHSA: GHSA-gj4p-3wh3-2rmf
GEM
SEVERITY
PATCHED VERSIONS
>= 0.9.11
DESCRIPTION
lib/yard/core_ext/file.rb in the server in YARD before 0.9.11 does not block relative paths with an initial ../ sequence, which allows attackers to conduct directory traversal attacks and read arbitrary files.