Arbitrary File Read Vulnerability in snyk-broker

Arbitrary File Read Vulnerability in snyk-broker

CVE-2020-7652 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

All versions of snyk-broker before 4.80.0 are vulnerable to Arbitrary File Read. It allows arbitrary file reads for users with access to Snyk's internal network via directory traversal.

Learn more about our Internal Network Penetration Testing.