Erlang/OTP 22.3.x prior to 22.3.4.6 and 23.x prior to 23.1 allows Directory Traversal. An attacker can send a crafted HTTP request to read arbitrary files, if httpd in the inets application is used.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
erlang erlang\\/otp |