CVE-2025-50151

Опубликовано: 21 июл. 2025

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

File access paths in configuration files uploaded by users with administrator access are not validated.

This issue affects Apache Jena version up to 5.4.0.

Users are recommended to upgrade to version 5.5.0, which does not allow arbitrary configuration upload.

Ссылки

https://lists.apache.org/thread/12gks5z40gh9bszn1xk8mz34gz586xss

EPSS

Процентиль: 38%

0.00163

Низкий

8.8 High

CVSS3

Дефекты

CWE-20

Связанные уязвимости

CVE-2025-50151

CVSS3: 8.8

ubuntu

24 дня назад

File access paths in configuration files uploaded by users with administrator access are not validated. This issue affects Apache Jena version up to 5.4.0. Users are recommended to upgrade to version 5.5.0, which does not allow arbitrary configuration upload.

CVE-2025-50151

CVSS3: 8.8

debian

24 дня назад

File access paths in configuration files uploaded by users with admini ...

GHSA-xg9p-p463-3qjp

CVSS3: 7.2

github

24 дня назад

Apache Jena doesn't validate file access paths in configuration files uploaded by users with administrator access

EPSS

Процентиль: 38%

0.00163

Низкий

8.8 High

CVSS3

Дефекты

CWE-20