Lucene search
Veracode Vulnerability DatabaseVERACODE:36742HistoryAug 19, 2022 - 4:06 a.m.
Path Traversal
2022-08-1904:06:35
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.002 Low
EPSS
Percentile
53.0%
payara-micro is vulnerable to path traversal. The vulnerability exists because the setClasspath function of GFLauncher.java does not properly set the ext directory, allowing an attacker to access files outside the expected directory.
| CPE | Name | Operator | Version |
|---|---|---|---|
| payara micro | le | 6.2022.1.Alpha2 | |
| payara micro | le | 5.2022.2 | |
| payara micro | le | 6.2022.1.Alpha2 | |
| payara micro | le | 5.2022.2 |
Related
redhatcve
redhatcve
CVE-2022-37422
2022-08-19 14:08:42
prion
prion
Directory traversal
2022-08-18 19:15:00
Code injection
2022-11-10 06:15:00
cvelist
cvelist
CVE-2022-37422
2022-08-18 18:02:01
CVE-2022-45129
2022-11-10 00:00:00
cve
cve
CVE-2022-37422
2022-08-18 19:15:14
CVE-2022-45129
2022-11-10 06:15:13
github
github
Path Traversal in Payara
2022-08-19 00:00:20
osv
osv
Path Traversal in Payara
2022-08-19 00:00:20
CVE-2022-45129
2022-11-10 06:15:13
nvd
nvd
CVE-2022-37422
2022-08-18 19:15:14
CVE-2022-45129
2022-11-10 06:15:13