The host is installed with 3.11.x through 3.11.4 and is prone to an untrusted search path vulnerability. A flaw is present in the application, which fails to properly handle an issue in the function os.path.normpath(). On successful exploitation, Passing a path with null bytes to the os.path.normpath() function causes the returned path to be unexpectedly truncated at the first occurrence of null b ...