[MAVEN:GHSA-W4M2-QMH3-2G8F] Yamcs Path Traversal vulnerability
Severity
High
Affected Packages
1
Fixed Packages
1
CVEs
1
Yamcs 5.8.6 is vulnerable to directory traversal (issue 1 of 2). The vulnerability is in the storage functionality of the API and allows one to escape the base directory of the buckets, freely navigate system directories, and read arbitrary files.
Package | Affected Version |
---|---|
pkg:maven/org.yamcs/yamcs | < 5.8.7 |
Package | Fixed Version |
---|---|
pkg:maven/org.yamcs/yamcs | = 5.8.7 |
- ID
- MAVEN:GHSA-W4M2-QMH3-2G8F
- Severity
- high
- URL
- https://github.com/advisories/GHSA-w4m2-qmh3-2g8f
- Published
-
2023-10-19T18:30:30
(11 months ago) - Modified
-
2023-11-12T05:01:46
(10 months ago) - Rights
- Maven Security Team
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |