← All advisories

High severityGHSA Advisory· Published Mar 17, 2019· Updated Aug 4, 2024

CVE-2019-5417

CVE-2019-5417

Description

A path traversal vulnerability in serve npm package version 7.0.1 allows the attackers to read content of arbitrary files on the remote server.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

Package	Affected versions	Patched versions
servenpm	< 7.1.3	7.1.3

Affected products

2

Lumiverse/ServeGHSA
Range: < 7.1.3
Package: https://npmjs.com/package/serve
ghsa-coords
pkg:npm/serve
Range: < 7.1.3

Patches

Vulnerability mechanics

References

4

github.com/advisories/GHSA-xg75-3277-gvvjghsaADVISORY
nvd.nist.gov/vuln/detail/CVE-2019-5417ghsaADVISORY
hackerone.com/reports/358645ghsax_refsource_MISCWEB
www.npmjs.com/advisories/795ghsaWEB

News mentions

0

No linked articles in our index yet.