An issue exists in Linaro LAVA prior to 2018.5.post1. Because of support for URLs in the submit page, a user can forge an HTTP request that will force lava-server-gunicorn to return any file on the server that is readable by lavaserver and valid yaml.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linaro lava |
||
debian debian linux 8.0 |
||
debian debian linux 9.0 |