How severe is CVE-2019-5437?

CVE-2019-5437 has a CVSS v3 score of 5.3 (MEDIUM).

CVE-2019-5437

Name: harp
Author: harpjs

5.3MEDIUM

Information exposure through the directory listing in npm's harp module allows to access files that are supposed to be ignored according to the harp server rules.Vulnerable versions are <= 0.29.0 and

Published: 5/10/2019Updated: 11/21/2024

Description

Information exposure through the directory listing in npm's harp module allows to access files that are supposed to be ignored according to the harp server rules.Vulnerable versions are <= 0.29.0 and no fix was applied to our knowledge.

AI AnalysisPowered by AI

Affected Products

harpjsharp

References

https://hackerone.com/reports/453820
ExploitThird Party Advisory
https://hackerone.com/reports/453820
ExploitThird Party Advisory