CVE-2023-29159 Information

Description

Directory traversal vulnerability in Starlette versions 0.13.5 and later and prior to 0.27.0 allows a remote unauthenticated attacker to view files in a web service which was built using Starlette.

Reference

https://github.com/encode/starlette/releases/tag/0.27.0 https://jvn.jp/en/jp/JVN95981715/ https://github.com/encode/starlette/security/advisories/GHSA-v5gw-mw7f-84px