dependency-check-core is vulnerable to arbitrary file write. The vulnerability exists due to the improper checking on the extracted file path, allowing arbitrary file writes.
CPE | Name | Operator | Version |
---|---|---|---|
dependency-check core | eq | 3.1.2 | |
dependency-check core | le | 3.1.1 |