Nicholasmy

**Name of the Vulnerable Software and Affected Versions** Autolab versions prior to 2.12.0 **Description** Autolab is a course management service that enables instructors to offer autograded programming assignments to their students over the Web. Path traversal vulnerabilities were discovered in Autolab's assessment functionality, whereby instructors can perform arbitrary file reads. **Recommendations** For versions prior to 2.12.0, update to version 2.12.0 to resolve the issue. At the moment, there is no information about other mitigation measures for this issue.