Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2022-4494
HistoryDec 14, 2022 - 12:15 p.m.

Path traversal

2022-12-1412:15:00
PRIOn knowledge base
www.prio-n.com
5
critical
path traversal
bspkrs mcpmappingviewer
zip file handler
remote attack
patch 6e602746c96b4756c271d080dae7d22ad804a1bd
vulnerability vdb-215804

9.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.6%

JSON

A vulnerability, which was classified as critical, has been found in bspkrs MCPMappingViewer. Affected by this issue is the function extractZip of the file src/main/java/bspkrs/mmv/RemoteZipHandler.java of the component ZIP File Handler. The manipulation leads to path traversal. The attack may be launched remotely. The name of the patch is 6e602746c96b4756c271d080dae7d22ad804a1bd. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-215804.

CPENameOperatorVersion
mcp_mapping_viewereq< 2022922

Related

cve 1
nvd 1
cvelist 1
osv 1
cve
cve
CVE-2022-4494
2022-12-14 12:15:09
nvd
nvd
CVE-2022-4494
2022-12-14 12:15:09
cvelist
cvelist
CVE-2022-4494 bspkrs MCPMappingViewer ZIP File RemoteZipHandler.java extractZip path traversal
2022-12-14 00:00:00
osv
osv
CVE-2022-4494
2022-12-14 12:15:09

9.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.6%

JSON
Related for PRION:CVE-2022-4494
cve1nvd1cvelist1osv1