CVE-2025-49656

Опубликовано: 21 июл. 2025

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

Users with administrator access can create databases files outside the files area of the Fuseki server.

This issue affects Apache Jena version up to 5.4.0.

Users are recommended to upgrade to version 5.5.0, which fixes the issue.

Ссылки

https://lists.apache.org/thread/qmm21som8zct813vx6dfd1phnfro6mwq
Issue Tracking
Vendor Advisory
http://www.openwall.com/lists/oss-security/2025/07/21/1

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:apache:jena:*:*:*:*:*:*:*:*

Версия до 5.5.0 (исключая)

EPSS

Процентиль: 35%

0.00143

Низкий

7.5 High

CVSS3

Дефекты

CWE-22

Связанные уязвимости

CVE-2025-49656

CVSS3: 7.5

ubuntu

5 месяцев назад

Users with administrator access can create databases files outside the files area of the Fuseki server. This issue affects Apache Jena version up to 5.4.0. Users are recommended to upgrade to version 5.5.0, which fixes the issue.

CVE-2025-49656

CVSS3: 6.5

redhat

5 месяцев назад

CVE-2025-49656

CVSS3: 7.5

debian

5 месяцев назад

Users with administrator access can create databases files outside the ...

GHSA-jq2c-m8gg-mqcm

CVSS3: 4.9

github

5 месяцев назад

Apache Jena allows users with administrator access to create databases files outside the files area of the Fuseki server

EPSS

Процентиль: 35%

0.00143

Низкий

7.5 High

CVSS3

Дефекты

CWE-22