2 matches found
CVE-2025-49656
CVE-2025-49656 affects Apache Jena Fuseki prior to 5.5.0. Multiple connected sources describe a path traversal vulnerability where a user with administrator access can cause the Fuseki server to create database files outside the intended files area. The vulnerability is tied to the Fuseki admin/U...
CVE-2025-50151
CVE-2025-50151 affects Apache Jena up to version 5.4.0, where file access paths in configuration files uploaded by administrators are not validated. The issue’s root cause is the missing validation of configuration file paths, allowing potential arbitrary file access. Mitigation: upgrade to Apach...