CVE-2023-51232 Information

Description

Directory Traversal vulnerability in dagster-webserver Dagster thru 1.5.11 allows remote attackers to obtain sensitive information via crafted request to the /logs endpoint. This may be restricted to certain file names that start with a dot (’.’).

Reference

https://github.com/dagster-io/dagster/pull/18462

Related CNNVD

CNNVD-202507-676 (Published: 2025-07-07)