The host is installed with Node.js 20.x before 20.11.1, or 21.x before 21.6.2 and is prone to a path traversal vulnerability. A flaw is present in the application which fails to properly handle multiple built-in utility functions used to normalize paths. Successful exploitation could allow an attacker to overwite the node:fs functions with user-defined implementations leading to filesystem permission model bypass.