CVE-2019-15714

Name of the Vulnerable Software and Affected Versions Entropic before 2019-06-13

Description The issue allows for a potential directory traversal attack in certain situations due to the failure to reject / and in command names in the cli/lib/main.js file.

Recommendations For versions prior to 2019-06-13, consider restricting or validating command names to prevent directory traversal attacks until a fix is applied.