14 matches found
TencentOS Server 4: testng (TSSA-2025:0122)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0122 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
Security Bulletin: IBM UrbanCode Build 6.1.7.10 addresses multiple vulnerabilities.
Summary Security Bulletin: IBM UrbanCode Build 6.1.7.10 addresses multiple vulnerabilities, listed in multiple CVEs CVE-2023-34981, CVE-2022-1471, CVE-2022-4065, CVE-2021-23450, CVE-2021-23450, CVE-2022-40151, CVE-2022-41966, CVE-2023-41080, CVE-2022-48285, CBE-2020-11971, CVE-2023-28709,...
openSUSE Security Advisory (SUSE-SU-2024:2568-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2024:2568-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RHEL 7 : testng (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - testng: a path traversal in zip files CVE-2022-4065 Note that Nessus has not tested for this issue but has instead...
Security Bulletin: Vulnerabilities of JCommander and TestNG have affected APM WebLogic and APM JBoss Agents.
Summary APM WebLogic and APM JBoss agents are vulnerable to JCommander and TestNG as described in 221124, CVE-2022-4065. The fix includes removing the required libraries from the installed path Vulnerability Details CVEID:CVE-2022-4065 DESCRIPTION: cbeust testing could allow a remote authenticate...
OESA-2024-1072 testng security update
TestNG is a testing framework inspired from JUnit and NUnit but introducing some new functionality that make it more powerful and easier to use, such as: Annotations. Run your tests in arbitrarily big thread pools with various policies available all methods in their own thread, one thread per tes...
MGASA-2023-0220 Updated testng packages fix security vulnerability
Path traversal in zip files CVE-2022-4065...
Updated testng packages fix security vulnerability
Path traversal in zip files CVE-2022-4065...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : testng (SUSE-SU-2023:1690-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:1690-1 advisory. - CVE-2022-4065: Fixed a path traversal in zip files bsc1205628. Tenable has extracted the preceding...
SUSE: Security Advisory (SUSE-SU-2023:1690-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2023:1690-1 Security update for testng
This update for testng fixes the following issues: - CVE-2022-4065: Fixed a path traversal in zip files bsc1205628...
app.getxray:xray-testng-extensions (>=0.1.0 <=0.2.0-beta), com.actiontestscript:ats-automated-testing (>=2.3.6 <=2.5.8) +143 more potentially affected by CVE-2022-4065 via org.testng:testng (>=7.6.0 <=7.6.1)
org.testng:testng MAVEN version =7.6.0, =0.1.0, =2.3.6, =2.4.13, =0.33.0, =1.3, =0.0.2, =0.0.2, =0.0.2, =3.0.0, =2.7.0, =2.8.1 and more Source cves: CVE-2022-4065 Source advisory: OSV:GHSA-RC2Q-X9MF-W3VF...
CVE-2022-4065
CVE-2022-4065 affects cbeust TestNG 7.5.0/7.6.0/7.6.1/7.7.0. The vulnerability stems from path traversal in testngXmlExistsInJar (JarFileUtils.java), enabling a remote attacker to traverse directories. Remediation is to upgrade to TestNG 7.5.1 or 7.7.1 (patch 9150736cd2c123a6a3b60e6193630859f9f04...