Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
OpenDeck affected by path traversal allows arbitrary file read
Vulnerability Description
OpenDeck is Linux software for your Elgato Stream Deck. Prior to 2.8.1, the service listening on port 57118 serves static files for installed plugins but does not properly sanitize path components. By including ../ sequences in the request path, an attacker can traverse outside the intended directory and read any file OpenDeck can access. This vulnerability is fixed in 2.8.1.
CVSS Information
N/A
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
OpenDeck 安全漏洞
Vulnerability Description
OpenDeck是nekename个人开发者的一个跨平台流媒体控制器桌面应用。 OpenDeck 2.8.1之前版本存在安全漏洞,该漏洞源于路径组件清理不当,可能导致攻击者通过目录遍历读取任意文件。
CVSS Information
N/A
Vulnerability Type
N/A