DirectorySecurity Advisories
Sign In
Security Advisories

CGA-pmq8-4h9g-36mm

Published

Last updated

https://images.chainguard.dev/security/CGA-pmq8-4h9g-36mm
Package

trino

Latest Update
Fixed
Fixed Version

440-r0

Aliases
  • CVE-2018-11798
  • GHSA-vx85-mj8c-4qm6

Severity

6.5

Medium

CVSS V3

Summary

Apache Thrift Node.js static web server sandbox escape

Description

The Apache Thrift Node.js static web server in versions 0.9.2 through 0.11.0 have been determined to contain a security vulnerability in which a remote user has the ability to access files outside the set webservers docroot path.

References

Updates

Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images

Why Chainguard

Container Image SecurityVulnerability RemediationCompliance and Risk MitigationSoftware Supply Chain SecurityAI/ML Security

Customers

Customer StoriesChainguard Love

Company

About UsOpen SourceCareersNewsroomLegal

Resources

Unchained BlogResearchEventsTrust CenterDocumentation