CVE-2020-36628

A vulnerability classified as critical has been found in Calsign APDE. This affects the function handleExtract of the file APDE/src/main/java/com/calsignlabs/apde/build/dag/CopyBuildTask.java of the component ZIP File Handler. The manipulation leads to path traversal. Upgrading to version...

CVE-2020-36628

A vulnerability classified as critical has been found in Calsign APDE. This affects the function handleExtract of the file APDE/src/main/java/com/calsignlabs/apde/build/dag/CopyBuildTask.java of the component ZIP File Handler. The manipulation leads to path traversal. Upgrading to version...

Path traversal

A vulnerability classified as critical has been found in Calsign APDE. This affects the function handleExtract of the file APDE/src/main/java/com/calsignlabs/apde/build/dag/CopyBuildTask.java of the component ZIP File Handler. The manipulation leads to path traversal. Upgrading to version...

CVE-2020-36628

Summary (CVE-2020-36628, Calsign APDE): A path traversal vulnerability exists in the ZIP File Handler’s CopyBuildTask.java handleExtract function of Calsign APDE. Versions prior to 0.5.2-pre2-alpha are affected; upgrading to 0.5.2-pre2-alpha mitigates the issue. The CVE impact is tied to untruste...