Lucene search
+L

27 matches found

OSV
OSV
added 5 days ago4 views

RLSA-2026:38514 Important: plexus-utils security update

The Plexus project seeks to create end-to-end developer tools for writing applications. At the core is the container, which can be embedded or for a full scale application server. There are many reusable components for hibernate, form processing, jndi, i18n, velocity, etc. Plexus also includes an...

8.3CVSS6.1AI score0.00663EPSS
Exploits0References2
Rockylinux
Rockylinux
added 5 days ago9 views

plexus-utils security update

An update is available for plexus-utils. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Plexus project seeks to create end-to-end developer tools for writi...

8.8CVSS6.1AI score0.00663EPSS
Exploits0
RedHat Linux
RedHat Linux
added 6 days ago7 views

Important: Red Hat Security Advisory: plexus-utils security update

An update for plexus-utils is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

8.8CVSS6.1AI score0.00663EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 6 days ago6 views

RockyLinux 9 : maven:3.9 (RLSA-2026:38500)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:38500 advisory. org.codehaus.plexus:plexus-utils: Plexus-utils: Directory Traversal in extractFile method CVE-2025-67030 Tenable has extracted the preceding description block...

8.8CVSS5.3AI score0.00663EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/07/06 6:17 p.m.7 views

Important: Red Hat Security Advisory: maven:3.9 security update

An update for the maven:3.9 module is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.8CVSS6AI score0.00663EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/07/06 3:59 p.m.8 views

Important: Red Hat Security Advisory: plexus-utils security update

An update for plexus-utils is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...

8.8CVSS6AI score0.00663EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/07/06 3:49 p.m.12 views

Important: Red Hat Security Advisory: plexus-utils security update

An update for plexus-utils is now available for Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, i...

8.8CVSS6AI score0.00663EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/07/06 3:46 p.m.6 views

Important: Red Hat Security Advisory: plexus-utils security update

An update for plexus-utils is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availab...

8.8CVSS6AI score0.00663EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/07/06 3:42 p.m.8 views

Important: Red Hat Security Advisory: plexus-utils security update

An update for plexus-utils is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, i...

8.8CVSS6AI score0.00663EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/15 10:16 p.m.6 views

Security Bulletin: MongoDB Enterprised Advanced affected by: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CVE-2025-67030)

Summary There are vulnerabilities in plexus-utils-3.5.1.jar used in MongoDB Enterprised Advanced for IBM, involving CVE-2025-67030. The vulnerability has been addressed. Vulnerability Details CVEID:CVE-2025-67030 DESCRIPTION: Directory Traversal vulnerability in the extractFile method of...

8.8CVSS5.9AI score0.00663EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/08 7:49 a.m.10 views

Security Bulletin: IBM App Connect Enterprise and IBM Integration Bus for z/OS are vulnerable to Directory Traversal due to plexus-utils (CVE-2025-67030)

Summary IBM App Connect Enterprise Toolkit and IBM Integration Bus for z/OS Toolkit are vulnerable to Directory Traversal due to plexus-utils. Vulnerability Details CVEID:CVE-2025-67030 DESCRIPTION: Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in...

8.8CVSS6.2AI score0.00663EPSS
Exploits0Affected Software2
Amazon
Amazon
added 2026/04/30 12:0 a.m.8 views

Important: maven3.9

Issue Overview: Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils before 6d780b3378829318ba5c2d29547e0012d5b29642. This allows an attacker to execute arbitrary code CVE-2025-67030 Affected Packages: maven3.9 Issue Correction: Run dnf...

8.8CVSS5.9AI score0.00663EPSS
Exploits0
OSV
OSV
added 2026/04/29 9:21 a.m.9 views

CLSA-2026-1777454474 plexus-utils: Fix of CVE-2025-67030

CVE-2025-67030: fix Zip Slip / directory traversal in Expand.extractFile canonical path check...

8.8CVSS5.8AI score0.00663EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/23 6:59 a.m.6 views

Security Bulletin: Due to use of plexus-utils-3.5.1.jar, IBM Sterling Connect:Direct Web Services is affected by Directory Traversal issue.

Summary plexus-utils-3.5.1.jar is used by IBM Sterling Connect:Direct Web Services CVE-2025-67030. Vulnerability Details CVEID:CVE-2025-67030 DESCRIPTION: Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils before...

8.8CVSS6.1AI score0.00663EPSS
Exploits0Affected Software1
OPENSUSE Linux
OPENSUSE Linux
added 2026/04/21 12:0 a.m.5 views

Security update for plexus-utils (important)

openSUSE security update: security update for plexus-utils ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20535-1 Rating: important References: bsc1260588 Cross-References: CVE-2025-67030 CVSS scores: CVE-2025-67030 SUSE : 7.3...

7.3CVSS5.7AI score0.00663EPSS
Exploits0References1
SUSE Linux
SUSE Linux
added 2026/04/16 10:35 a.m.6 views

Security update for plexus-utils

This update for plexus-utils fixes the following issue: Security fixes: CVE-2025-67030: directory traversal via the extractFile method of org.codehaus.plexus.util.Expand bsc1260588. Update to version 4.0.2: Bug Fixes Specify /D for cmd.exe to bypass the Command Processor Autorun folder Dependency...

7.3CVSS5.8AI score0.00663EPSS
Exploits0References4
OSV
OSV
added 2026/04/14 3:15 p.m.5 views

OPENSUSE-SU-2026:20535-1 Security update for plexus-utils

This update for plexus-utils fixes the following issue: - CVE-2025-67030: directory traversal via the extractFile method of org.codehaus.plexus.util.Expand bsc1260588...

8.8CVSS5.8AI score0.00663EPSS
Exploits0References2
Amazon
Amazon
added 2026/04/14 12:0 a.m.17 views

Important: plexus-utils

Issue Overview: Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils before 6d780b3378829318ba5c2d29547e0012d5b29642. This allows an attacker to execute arbitrary code CVE-2025-67030 Affected Packages: plexus-utils Note: This advisory is...

8.8CVSS6.2AI score0.00663EPSS
Exploits0
Amazon
Amazon
added 2026/04/13 12:0 a.m.11 views

Important: plexus-utils

Issue Overview: Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils before 6d780b3378829318ba5c2d29547e0012d5b29642. This allows an attacker to execute arbitrary code CVE-2025-67030 Affected Packages: plexus-utils Issue Correction: Run dn...

8.8CVSS6.1AI score0.00663EPSS
Exploits0
Circl
Circl
added 2026/03/30 5:0 p.m.5 views

CVE-2025-67030

creationtimestamp| type| source ---|---|--- 2026-03-30 17:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0381/ 2026-03-31 14:45:17+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mieg3xyw3g26...

8.8CVSS5.8AI score0.00663EPSS
Exploits0References2
Rows per page
Query Builder