Code injection

2022-05-0116:15:00

PRIOn knowledge base

www.prio-n.com

0.001 Low

EPSS

Percentile

48.9%

This affects the package pistacheio/pistache before 0.0.3.20220425. It is possible to traverse directories to fetch arbitrary files from the server.

CPENameOperatorVersion
pistachelt0.0.3.20220425

CPE	Name	Operator	Version
	pistache	lt	0.0.3.20220425

References

github.com/pistacheio/pistache/pull/1065

snyk.io/vuln/SNYK-UNMANAGED-PISTACHEIOPISTACHE-2806332

0.001 Low

EPSS

Percentile

48.9%

Related for PRION:CVE-2022-26068