A vulnerability was found in oak up to 17.1.2. It has been rated as problematic. This issue affects the function Context.send of the component API. The manipulation leads to path traversal: ‘…/…//’.

The identification of this vulnerability is CVE-2024-49770. The attack may be initiated remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.