OVAL Reference oval:com.ubuntu.bionic:def:201463940000000

Oval Definition:

oval:com.ubuntu.bionic:def:201463940000000

Revision Date:	2014-10-08	Version:	1
Title:	CVE-2014-6394 on Ubuntu 18.04 LTS (bionic) - medium.
Description:	visionmedia send before 0.8.4 for Node.js uses a partial comparison for verifying whether a directory is within the document root, which allows remote attackers to access restricted directories, as demonstrated using "public-restricted" under a "public" directory.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2014-6394
Platform(s):	Ubuntu 18.04 LTS	Product(s):
Definition Synopsis
Ubuntu 18.04 LTS (bionic) is installed. AND node-send package in bionic was vulnerable but has been fixed (note: '0.9.4-1').