High severityNVD Advisory· Published Nov 21, 2022· Updated Apr 29, 2025
Apache Hama allows XSS and information disclosure
CVE-2022-45470
Description
missing input validation in Apache Hama may cause information disclosure through path traversal and XSS. Since Apache Hama is EOL, we do not expect these issues to be fixed.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.apache.hama:hama-coreMaven | <= 0.7.1 | — |
Affected products
2Patches
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- github.com/advisories/GHSA-4wfh-48v4-3r84ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-45470ghsaADVISORY
- www.openwall.com/lists/oss-security/2022/11/21/1ghsamailing-listWEB
- lists.apache.org/thread/ztvoshd4kxvp5vlro52mpgpfxct4ft8lghsaWEB
News mentions
0No linked articles in our index yet.