CVE-2022-4878 in JATOS情報

要約

〜によって MITRE • 2023年01月09日

A vulnerability classified as critical has been found in JATOS. Affected is the function ZipUtil of the file modules/common/app/utils/common/ZipUtil.java of the component ZIP Handler. The manipulation leads to path traversal. Upgrading to version 3.7.5-alpha is able to address this issue. The name of the patch is 2b42519f309d8164e8811392770ce604cdabb5da. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-217548.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

責任者

VulDB

予約する

2023年01月06日

公開

2023年01月09日

モデレーション

承諾済み

エントリ

VDB-217548

CPE

準備完了

CWE

CWE-22 (確認済み)

CVSS

5.3 (NVD)

EPSS

0.00282

KEV

いいえ

アクティビティ

非常低い

ソース

MITRE	https://www.cve.org/CVERecord?id=CVE-2022-4878
NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-4878
CVE Details	https://www.cvedetails.com/cve/CVE-2022-4878/

◂ 前概要次 ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!