passenger is vulnerable to arbitrary file list reading. If passenger is run as root, an attacker who has write access to an application can read a list of files contained within a directory.
CPE | Name | Operator | Version |
---|---|---|---|
passenger | le | 5.1.10 | |
passenger:bionic | eq | 5.0.30 |