VYPR
Unrated severityNVD Advisory· Published Jul 31, 2019· Updated Aug 4, 2024

CVE-2019-10182

CVE-2019-10182

Description

It was found that icedtea-web though 1.7.2 and 1.8.2 did not properly sanitize paths from elements in JNLP files. An attacker could trick a victim into running a specially crafted application and use this flaw to upload arbitrary files to arbitrary locations in the context of the user.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

9

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.