Lucene search
+L

4 matches found

Chainguard
Chainguard
added 2026/04/09 1:17 a.m.10 views

CVE-2025-70952 vulnerabilities

Vulnerabilities for packages: kayenta, nextflow, kayenta-fips...

7.5CVSS5.1AI score0.00856EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2026/03/25 9:30 p.m.6 views

care.better.pf4j:pf4j-kotlin-symbol-processing (>=2.1.0-1.0.2 <=2.3.10-1.0.4), cn.sliew:carp-dist (>=0.0.1 <=0.0.34) +596 more potentially affected by CVE-2025-70952 via org.pf4j:pf4j (>=2.0.0 <=3.14.0)

org.pf4j:pf4j MAVEN version =2.0.0, =2.1.0-1.0.2, =0.0.1, =0.0.42, =0.0.63, =0.0.64, =0.0.66, =0.0.63, =0.0.49, =0.0.61, =0.0.61, =0.0.13, =0.0.1, =0.0.33, =0.0.33, =0.0.33, =0.0.34 and more Source cves: CVE-2025-70952 Source advisory: OSV:GHSA-5458-7HH9-V7P4...

7.5CVSS5.7AI score0.00856EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2026/03/25 8:31 p.m.8 views

care.better.pf4j:pf4j-kotlin-symbol-processing (>=2.1.0-1.0.2 <=2.3.10-1.0.4), cn.sliew:carp-dist (>=0.0.1 <=0.0.34) +567 more potentially affected by CVE-2025-70952 via org.pf4j:pf4j (>=3.0.1 <=3.14.0)

org.pf4j:pf4j MAVEN version =3.0.1, =2.1.0-1.0.2, =0.0.1, =0.0.42, =0.0.63, =0.0.64, =0.0.66, =0.0.63, =0.0.49, =0.0.61, =0.0.61, =0.0.13, =0.0.1, =0.0.33, =0.0.33, =0.0.33, =0.0.34 and more Source cves: CVE-2025-70952 Source advisory: SNYK:JAVA-ORGPF4J-15766713...

7.5CVSS5.7AI score0.00856EPSS
Exploits1
Cvelist
Cvelist
added 2026/03/25 12:0 a.m.25 views

CVE-2025-70952

pf4j before 20c2f80 has a path traversal vulnerability in the extract function of Unzip.java, where improper handling of zip entry names can allow directory traversal or Zip Slip attacks, due to a lack of proper path normalization and validation...

0.00856EPSS
Exploits1References4
Rows per page
Query Builder