4 matches found
CVE-2026-40022
When authentication is enabled on the Apache Camel embedded HTTP server or embedded management server camel-platform-http-main and a non-root context path such as /api or /admin is configured via camel.server.path or camel.management.path, the BasicAuthenticationConfigurer and...
Temporary Directory Hijacking to Local Privilege Escalation Vulnerability in org.springframework.boot:spring-boot
spring-boot versions prior to version v2.2.11.RELEASE was vulnerable to temporary directory hijacking. This vulnerability impacted the org.springframework.boot.web.server.AbstractConfigurableWebServerFactory.createTempDir method. The vulnerable method is used to create a work directory for embedd...
A directory traversal vulnerability exists in the Cesanta Mongoose server.
Cesanta Mongoose is a suite of embedded servers from Cesanta, Ireland. A directory traversal vulnerability exists in the Cesanta Mongoose server, which can be exploited by an attacker to obtain directory information...
Cesanta Mongoose Remote Code Execution Vulnerability
Cesanta Mongoose is a set of embedded servers from the Irish company Cesanta. websocket protocol is one of the websocket communication protocols. A remote code execution vulnerability exists in the Websocket protocol implementation in Cesanta Mongoose version 6.8. A remote attacker can exploit th...