CVE-2022-4878
CVE-2022-4878 affects JATOS; the ZIP Handler’s ZipUtil.java enables path traversal. Affected versions pre-3.7.5-alpha are vulnerable; upgrading to 3.7.5-alpha addresses the issue (patch: 2b42519f309d8164e8811392770ce604cdabb5da). Multiple connected sources consistently describe the same root caus...