Sign in Subscribe

← All advisories

High severityNVD Advisory· Published Jul 29, 2019· Updated Aug 5, 2024

CVE-2019-1020001

CVE-2019-1020001

Description

yard before 0.9.20 allows path traversal.

Affected packages

Versions sourced from the GitHub Security Advisory.

Package	Affected versions	Patched versions
yardRubyGems	< 0.9.20	0.9.20

Affected products

1

Yard/Yardv5
Range: < 0.9.20

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

4

github.com/advisories/GHSA-xfhh-rx56-rxcrghsaADVISORY
nvd.nist.gov/vuln/detail/CVE-2019-1020001ghsaADVISORY
github.com/lsegal/yard/security/advisories/GHSA-xfhh-rx56-rxcrghsaWEB
lists.debian.org/debian-lts-announce/2024/03/msg00006.htmlghsamailing-listWEB

News mentions

0

No linked articles in our index yet.