CVE-2025-49656

Опубликовано: 21 июл. 2025

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

Users with administrator access can create databases files outside the files area of the Fuseki server.

This issue affects Apache Jena version up to 5.4.0.

Users are recommended to upgrade to version 5.5.0, which fixes the issue.

Ссылки

https://lists.apache.org/thread/qmm21som8zct813vx6dfd1phnfro6mwq
Vendor Advisory
Issue Tracking

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:apache:jena:*:*:*:*:*:*:*:*

Версия до 5.5.0 (исключая)

EPSS

Процентиль: 35%

0.00141

Низкий

7.5 High

CVSS3

Дефекты

CWE-22

Связанные уязвимости

CVE-2025-49656

CVSS3: 7.5

ubuntu

около 2 месяцев назад

Users with administrator access can create databases files outside the files area of the Fuseki server. This issue affects Apache Jena version up to 5.4.0. Users are recommended to upgrade to version 5.5.0, which fixes the issue.

CVE-2025-49656

CVSS3: 6.5

redhat

около 2 месяцев назад

CVE-2025-49656

CVSS3: 7.5

debian

около 2 месяцев назад

Users with administrator access can create databases files outside the ...

GHSA-jq2c-m8gg-mqcm

CVSS3: 4.9

github

около 2 месяцев назад

Apache Jena allows users with administrator access to create databases files outside the files area of the Fuseki server

EPSS

Процентиль: 35%

0.00141

Низкий

7.5 High

CVSS3

Дефекты

CWE-22