5 matches found
ch.sourcepond.commons:smartswitch-tests (>=2.0.0 <=4.0.2), ch.sourcepond.io:checksum-tests (>=1.0.3 <=4.0.3) +46 more potentially affected by CVE-2022-22932 via org.apache.karaf:apache-karaf (>=2.0.0 <=4.2.11)
org.apache.karaf:apache-karaf MAVEN version =2.0.0, =2.0.0, =1.0.3, =1.0.0, =1.0.0, =1.5, =1.5.6, =4.4.1, =1.1.2, =1.0.0, =2.0.0, =2.0.6, =4.2.10.hyte-42101, =4.1.6.hyte-4008, =4.2.11.hyte-42119 and more Source cves: CVE-2022-22932 Source advisory: OSV:GHSA-544X-2JX9-4PFG...
org.apache.camel.karaf:camel-test-karaf (>=3.10.0 <=3.14.0) potentially affected by CVE-2022-22932 via org.apache.karaf:apache-karaf (>=4.3.1 <=4.3.3)
org.apache.karaf:apache-karaf MAVEN version =4.3.1, =3.10.0, =3.14.0 Source cves: CVE-2022-22932 Source advisory: OSV:GHSA-544X-2JX9-4PFG...
CVE-2022-22932
Apache Karaf obr: commands and run goal on the karaf-maven-plugin have partial path traversal which allows to break out of expected folder. The risk is low as obr: commands are not very used and the entry is set by user. This has been fixed in revision:...
CVE-2022-22932 Path traversal flaws
Apache Karaf obr: commands and run goal on the karaf-maven-plugin have partial path traversal which allows to break out of expected folder. The risk is low as obr: commands are not very used and the entry is set by user. This has been fixed in revision:...
CVE-2022-22932 Path traversal flaws
Apache Karaf obr: commands and run goal on the karaf-maven-plugin have partial path traversal which allows to break out of expected folder. The risk is low as obr: commands are not very used and the entry is set by user. This has been fixed in revision:...