Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-2712: Bug Access Denied

In Eclipse GlassFish versions 5.1.0 to 6.2.5, there is a vulnerability in relative path traversal because it does not filter request path starting with './’. Successful exploitation could allow an remote unauthenticated attacker to access critical data, such as configuration files and deployed application source code.

CVE
Open in Source
#vulnerability#auth

Related documentation

  • Creating an account

You are not authorized to access bug #580502. To see this bug, you must first log in to an account with the appropriate permissions.

Please press Back and try again.

Related news

GHSA-3g5w-6pw7-6hrp: Path Traversal In Eclipse GlassFish

In Eclipse GlassFish versions 5.1.0 to 6.2.5, there is a vulnerability in relative path traversal because it does not filter request path starting with './'. Successful exploitation could allow an remote unauthenticated attacker to access critical data, such as configuration files and deployed application source code.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE