CVE-2021-3195 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Medium
Remote	Yes
Type	Directory traversal
Description	bitcoind in Bitcoin Core can create a new file in an arbitrary directory (e.g., outside the ~/.bitcoin directory) via a dumpwallet RPC call. NOTE: this reportedly does not violate the security model of Bitcoin Core, but can violate the security model of a fork that has implemented dumpwallet restrictions.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-1486	bitcoin-daemon	22.0-1		Medium	Vulnerable

References
https://github.com/bitcoin/bitcoin/issues/20866