Описание
hawtio vulnerable to Path Traversal
hawtio 2.17.2 is vulnerable to Path Traversal. it is possible to input malicious zip files, which can result in the high-risk files after decompression being stored in any location, even leading to file overwrite.
Пакеты
Наименование
io.hawt:project
maven
Затронутые версииВерсия исправления
<= 2.17.2
Отсутствует
Связанные уязвимости
CVSS3: 5.5
redhat
больше 2 лет назад
hawtio 2.17.2 is vulnerable to Path Traversal. it is possible to input malicious zip files, which can result in the high-risk files after decompression being stored in any location, even leading to file overwrite.
CVSS3: 5.5
nvd
больше 2 лет назад
hawtio 2.17.2 is vulnerable to Path Traversal. it is possible to input malicious zip files, which can result in the high-risk files after decompression being stored in any location, even leading to file overwrite.