EPSS
Percentile
28.4%
snyk-broker is vulnerable to information disclosure. The vulnerability exists because it does not properly discard unused white-listed APIs, allowing a user with access to Snyk’s internal network to create symlinks to match white-listed paths.
github.com/snyk/broker/blob/master/SECURITY.md
github.com/snyk/broker/pull/244