CVE-2022-35204

Name of the Vulnerable Software and Affected Versions Vitejs Vite versions prior to 2.9.13

Description The issue allows attackers to perform a directory traversal via a crafted URL to the victim's service. This can be achieved by sending a specifically designed URL to the victim's service, potentially leading to unauthorized access to sensitive information.

Recommendations For versions prior to 2.9.13, update to version 2.9.13 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive directories and implementing additional security measures to prevent unauthorized access.