3 matches found
CVE-2026-3067
CVE-2026-3067 affects HummerRisk up to version 1.5.0, targeting the Archive Extraction code path in hummer-common-core: CommandUtils.extractTarGZ and extractZip. The issue enables path traversal via manipulation of extracted archives, and is remotely exploitable. Public disclosure of the exploit ...
EUVD-2026-7396
A vulnerability has been found in HummerRisk up to 1.5.0. This issue affects the function extractTarGZ/extractZip of the file hummer-common/hummer-common-core/src/main/java/com/hummer/common/core/utils/CommandUtils.java of the component Archive Extraction. The manipulation leads to path traversal...
HummerCloud HummerRisk 路径遍历漏洞
HummerCloud HummerRisk is an open-source cloud-native security platform developed by HummerCloud Corporation. It addresses security and governance issues in cloud-native environments in a non-invasive manner. Its core capabilities include security governance for hybrid clouds and cloud-native...