fix(security):Path Traversal Bug

Disclosed: 2022-08-11 19:53:16 By bhaskar_ram To hyperledger

High

Vulnerability Details

Unsanitized input from CLI argument flows into `io.ioutil.ReadFile`, where it is used as a path. This may result in a Path Traversal vulnerability and allow an attacker to read arbitrary files. See this fix : https://github.com/hyperledger/fabric/pull/3573 ## Impact There is a path traversal vulnerability in the source code of fabric

Actions

View on HackerOne

Report Stats

Report ID: 1664244
State: Closed
Substate: not-applicable
Upvotes: 3

fix(security):Path Traversal Bug

Vulnerability Details

Actions

Report Stats

Share this report