Maven package
io.fabric8/fabric8-maven-plugin
pkg:maven/io.fabric8/fabric8-maven-plugin
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-10721 | Hig | 7.8 | >= 4.0.0-M1, <= 4.4.2 | — | Oct 22, 2020 | A flaw was found in the fabric8-maven-plugin 4.0.0 and later. When using a wildfly-swarm or thorntail custom configuration, a malicious YAML configuration file on the local machine executing the maven plug-in could allow for deserialization of untrusted data resulting in arbitrar |
- affected >= 4.0.0-M1, <= 4.4.2
A flaw was found in the fabric8-maven-plugin 4.0.0 and later. When using a wildfly-swarm or thorntail custom configuration, a malicious YAML configuration file on the local machine executing the maven plug-in could allow for deserialization of untrusted data resulting in arbitrar