Glassfish@* Security Vulnerabilities and Issues — Glassfish@* CVE List

Lucene search

EclipseGlassfish*

2 matches found

CVE•added 2023/01/27 10:15 a.m.•64 views

CVE-2022-2712

In Eclipse GlassFish versions 5.1.0 to 6.2.5, there is a vulnerability in relative path traversal because it does not filter request path starting with './'. Successful exploitation could allow an remote unauthenticated attacker to access critical data, such as configuration files and deployed appl...

7.5CVSS7.4AI score0.0015EPSS

CVE•added 2023/11/03 7:15 a.m.•52 views

CVE-2023-5763

In Eclipse Glassfish 5 or 6, running with old versions of JDK (lower than 6u211, or < 7u201, or

9.8CVSS8.1AI score0.00154EPSS