All versions of snyk-broker prior to 4.80.0 are vulnerable to Arbitrary File Read. It allows arbitrary file reads for users with access to Snyk's internal network by creating symlinks to match whitelisted paths.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
synk broker |