A vulnerability classified as problematic was found in Jan 0.4.12. Affected by this vulnerability is an unknown functionality of the file /v1/app/readFileSync. The manipulation leads to path traversal.
This vulnerability is known as CVE-2024-36857. The attack needs to be initiated within the local network. There is no exploit available.