0.0005 Low
EPSS
Percentile
17.2%
org.apache.karaf.obr.core is vulnerable to path traversal. An attacker is able to break out of the destination folder and access restricted paths using obr:* commands and run goal.
obr:*
github.com/apache/karaf/commit/0b18fe3ebeda4d5dd8821fb27f1e163c16316a3a
github.com/apache/karaf/pull/1485
issues.apache.org/jira/browse/KARAF-7326
karaf.apache.org/security/cve-2022-22932.txt