Path traversal in Calibre <= 7.14.0 allow unauthenticated attackers to achieve arbitrary file read.
{ "urgency": "not yet assigned" }