CVE-2021-34363 - log back

CVE-2021-34363 edited at 10 Jun 2021 10:59:08
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Arbitrary file overwrite
Description
+ The thefuck package before 3.31 allows path traversal that leads to arbitrary file deletion via the "undo archive operation" feature.
References
+ https://vuln.ryotak.me/advisories/48
+ https://github.com/nvbn/thefuck/commit/e343c577cd7da4d304b837d4a07ab4df1e023092
Notes
CVE-2021-34363 created at 10 Jun 2021 10:56:56