CVE-2022-42725

Name of the Vulnerable Software and Affected Versions Warpinator versions prior to 1.2.15

Description The issue is related to incorrect link resolution before accessing files, allowing access outside of an intended directory. This can be exploited by a remote attacker to gain unauthorized access to protected information, as demonstrated by symbolic directory links.

Recommendations For Warpinator versions prior to 1.2.15, update to version 1.2.15 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive files and directories to minimize the risk of exploitation.