Lucene search
+L

26 matches found

RedHat Linux
RedHat Linux
added 6 days ago6 views

org.codehaus.plexus:plexus-utils: Plexus-utils: Directory Traversal in extractFile method

A flaw was found in plexus-utils. This vulnerability, known as a Directory Traversal, exists within the extractFile method. An attacker can exploit this to execute unauthorized code on the system in the context of the current working user...

8.8CVSS6.2AI score0.00663EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 6 days ago5 views

Important: Red Hat Security Advisory: maven:3.9 security update

An update for the maven:3.9 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS6.1AI score0.00663EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 6 days ago8 views

org.codehaus.plexus:plexus-utils: Plexus-utils: Directory Traversal in extractFile method

A flaw was found in plexus-utils. This vulnerability, known as a Directory Traversal, exists within the extractFile method. An attacker can exploit this to execute unauthorized code on the system in the context of the current working user...

8.8CVSS6.2AI score0.00663EPSS
Exploits0References9
OSV
OSV
added 6 days ago4 views

ALSA-2026:38514 Important: plexus-utils security update

The Plexus project seeks to create end-to-end developer tools for writing applications. At the core is the container, which can be embedded or for a full scale application server. There are many reusable components for hibernate, form processing, jndi, i18n, velocity, etc. Plexus also includes an...

8.8CVSS6.1AI score0.00663EPSS
Exploits0References4
OSV
OSV
added 6 days ago3 views

ALSA-2026:38796 Important: plexus-utils security update

The Plexus project seeks to create end-to-end developer tools for writing applications. At the core is the container, which can be embedded or for a full scale application server. There are many reusable components for hibernate, form processing, jndi, i18n, velocity, etc. Plexus also includes an...

8.8CVSS6.1AI score0.00663EPSS
Exploits0References4
OSV
OSV
added 2026/07/07 10:9 a.m.5 views

RHSA-2026:35991 Red Hat Security Advisory: plexus-utils security update

Bulletin has no description...

8.3CVSS5.9AI score0.00663EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2026/07/06 6:17 p.m.6 views

org.codehaus.plexus:plexus-utils: Plexus-utils: Directory Traversal in extractFile method

A flaw was found in plexus-utils. This vulnerability, known as a Directory Traversal, exists within the extractFile method. An attacker can exploit this to execute unauthorized code on the system in the context of the current working user...

8.8CVSS6.1AI score0.00663EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2026/07/06 3:49 p.m.6 views

org.codehaus.plexus:plexus-utils: Plexus-utils: Directory Traversal in extractFile method

A flaw was found in plexus-utils. This vulnerability, known as a Directory Traversal, exists within the extractFile method. An attacker can exploit this to execute unauthorized code on the system in the context of the current working user...

8.8CVSS6.1AI score0.00663EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2026/07/06 3:46 p.m.6 views

org.codehaus.plexus:plexus-utils: Plexus-utils: Directory Traversal in extractFile method

A flaw was found in plexus-utils. This vulnerability, known as a Directory Traversal, exists within the extractFile method. An attacker can exploit this to execute unauthorized code on the system in the context of the current working user...

8.8CVSS6.1AI score0.00663EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2026/07/06 3:42 p.m.8 views

Important: Red Hat Security Advisory: plexus-utils security update

An update for plexus-utils is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, i...

8.8CVSS6AI score0.00663EPSS
Exploits0References2
OSV
OSV
added 2026/06/17 3:51 p.m.6 views

ROOT-APP-MAVEN-CVE-2025-67030 CVE-2025-67030 in io.root.org.codehaus.plexus:plexus-utils - Patched by Root

Root has patched CVE-2025-67030 in the io.root.org.codehaus.plexus:plexus-utils package for Root:Maven. Multiple fixed versions available...

8.8CVSS5.8AI score0.00663EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/05/18 12:21 p.m.3 views

org.codehaus.plexus:plexus-utils: Plexus-utils: Directory Traversal in extractFile method

A flaw was found in plexus-utils. This vulnerability, known as a Directory Traversal, exists within the extractFile method. An attacker can exploit this to execute unauthorized code on the system in the context of the current working user...

8.8CVSS6AI score0.00663EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2026/04/14 5:18 p.m.10 views

org.codehaus.plexus:plexus-utils: Plexus-utils: Directory Traversal in extractFile method

A flaw was found in plexus-utils. This vulnerability, known as a Directory Traversal, exists within the extractFile method. An attacker can exploit this to execute unauthorized code on the system in the context of the current working user...

8.8CVSS5.9AI score0.00663EPSS
Exploits0References9
OSV
OSV
added 2026/04/14 3:15 p.m.5 views

OPENSUSE-SU-2026:20535-1 Security update for plexus-utils

This update for plexus-utils fixes the following issue: - CVE-2025-67030: directory traversal via the extractFile method of org.codehaus.plexus.util.Expand bsc1260588...

8.8CVSS5.8AI score0.00663EPSS
Exploits0References2
Amazon
Amazon
added 2026/04/13 12:0 a.m.11 views

Important: plexus-utils

Issue Overview: Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils before 6d780b3378829318ba5c2d29547e0012d5b29642. This allows an attacker to execute arbitrary code CVE-2025-67030 Affected Packages: plexus-utils Issue Correction: Run dn...

8.8CVSS6.1AI score0.00663EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/03/25 6:31 p.m.7 views

aero.albers.osmbse:mdzip-process-sources-maven-plugin (=0.0.1), aero.albers.osmbse:mdzip-validate-maven-plugin (=0.0.1) +24036 more potentially affected by CVE-2025-67030 via org.codehaus.plexus:plexus-utils (>=1.0.4 <=3.6.0)

org.codehaus.plexus:plexus-utils MAVEN version =1.0.4, =0.1, =0.1.0, =0.0.1, =0.0.6, =0.1.10, =0.1.3, =0.0.1, =0.0.1, =0.2.0, =0.1.3, =0.1.3, =0.1.5 - ai.pipestream:pipestream-engine =0.0.6 - ai.pipestream:pipestream-engine-kafka-sidecar =0.0.2 and more Source cves: CVE-2025-67030 Source advisory...

8.8CVSS5.7AI score0.00663EPSS
Exploits0
EUVD
EUVD
added 2026/03/25 6:31 p.m.11 views

EUVD-2025-209002

Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils before 6d780b3378829318ba5c2d29547e0012d5b29642. This allows an attacker to execute arbitrary code...

6.2AI score0.00663EPSS
Exploits0References6
OSV
OSV
added 2026/03/25 6:31 p.m.6 views

GHSA-6FMV-XXPF-W3CW Plexus-Utils has a Directory Traversal vulnerability in its extractFile method

Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils before 6d780b3378829318ba5c2d29547e0012d5b29642. This allows an attacker to execute arbitrary code...

8.8CVSS6.2AI score0.00663EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2026/03/25 12:0 a.m.6 views

CVE-2025-67030

Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils before 6d780b3378829318ba5c2d29547e0012d5b29642. This allows an attacker to execute arbitrary code...

8.8CVSS5.9AI score0.00663EPSS
Exploits0
CVE
CVE
added 2026/03/25 12:0 a.m.86 views

CVE-2025-67030

CVE-2025-67030 is a Directory Traversal/vulnerability in the Plexus Utils library (Expand.extractFile) that can lead to code execution. It affects plexus-utils versions prior to the patch 6d780b3378829318ba5c2d29547e0012d5b29642, with CVSS v3.1 base score 8.8 (HIGH). The connected vendor advisori...

8.8CVSS6.2AI score0.00663EPSS
Exploits0References24Affected Software1
Rows per page
Query Builder