RubySec

Providing security resources for the Ruby community

CVE-2023-38337 (rswag): rswag vulnerable to arbitrary JSON and YAML file read via directory traversal

ADVISORIES

GEM

rswag

SEVERITY

CVSS v3.x: 7.5 (High)

PATCHED VERSIONS

  • >= 2.10.1

DESCRIPTION

rswag before 2.10.1 allows remote attackers to read arbitrary JSON and YAML files via directory traversal, because rswag-api can expose a file that is not the OpenAPI (or Swagger) specification file of a project.

RELATED