Advisory #28
Titleisomorphic-git path traversal via malicious repository
CVE IDCVE-2021-30483
Vendorisomorphic-git
Affected productisomorphic-git
Affected versions- v1.8.1
Vulnerability typeCWE-22 (Path Traversal)
Descriptionisomorphic-git has a vulnerability that allows a malicious repository to perform the path traversal.
StatusFixed in v1.8.2
RecommendationUpdate to v1.8.2 or above.