Medium severity5.3NVD Advisory· Published Nov 29, 2021· Updated Jun 17, 2026
CVE-2021-32061
CVE-2021-32061
Description
S3Scanner before 2.0.2 allows Directory Traversal via a crafted bucket, as demonstrated by a ../ substring in a ListBucketResult element.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
s3scannerPyPI | < 2.0.2 | 2.0.2 |
Affected products
2- S3Scanner/S3Scannerdescription
Patches
Vulnerability mechanics
References
7- github.com/advisories/GHSA-qppg-v75c-r5ffghsaADVISORY
- github.com/sa7mon/S3Scanner/issues/122nvdThird Party AdvisoryWEB
- github.com/sa7mon/S3Scanner/releases/tag/2.0.2nvdRelease NotesThird Party AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2021-32061ghsaADVISORY
- vuln.ryotak.me/advisories/62nvdThird Party AdvisoryWEB
- github.com/pypa/advisory-database/tree/main/vulns/s3scanner/PYSEC-2021-433.yamlghsaWEB
- github.com/sa7mon/S3Scanner/commit/fafa30a3bd35b496b3f7db9bfc35b75a8a06bcd1ghsaWEB
News mentions
0No linked articles in our index yet.