CVE-2022-22821

NVIDIA NeMo before 1.6.0 contains a vulnerability in ASR WebApp, in which ../ Path Traversal may lead to deletion of any directory when admin privileges are available.

References

https://github.com/NVIDIA/NeMo/security/advisories/GHSA-rpx7-33j2-xx9x