VYPR
Critical severityNVD Advisory· Published May 23, 2022· Updated Aug 3, 2024

Commandline class shell injection vulnerabilities

CVE-2022-29599

Description

In Apache Maven maven-shared-utils prior to version 3.3.3, the Commandline class can emit double-quoted strings without proper escaping, allowing shell injection attacks.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.apache.maven.shared:maven-shared-utilsMaven
< 3.3.33.3.3

Affected products

52

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.