All versions of snyk-broker prior to 4.79.0 are vulnerable to Arbitrary File Read. It allows partial file reads for users who have access to Snyk's internal network via patch history from GitHub Commits API.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
synk broker |