CVE-2021-20095 - log back

CVE-2021-20095 edited at 29 Apr 2021 16:46:05
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Arbitrary code execution
Description
+ Relative Path Traversal in Babel 2.9.0 allows an attacker to load arbitrary locale files on disk and execute arbitrary code.
References
+ https://www.tenable.com/security/research/tra-2021-14
+ https://github.com/python-babel/babel/pull/782
+ https://github.com/python-babel/babel/commit/412015ef642bfcc0d8ba8f4d05cdbb6aac98d9b3
Notes
CVE-2021-20095 created at 29 Apr 2021 16:44:49