JetBrains Ktor before 2.1.0 was vulnerable to the Reflect File Download attack
The product compares two entities in a security-relevant context, but the comparison is incorrect, which may lead to resultant weaknesses.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Ktor | Jetbrains | * | 2.1.0 (excluding) |
This Pillar covers several possibilities: