Maven package
org.apache.ode/ode
pkg:maven/org.apache.ode/ode
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-1316 | Hig | 7.5 | < 1.3.3 | 1.3.3 | Mar 5, 2018 | The ODE process deployment web service was sensible to deployment messages with forged names. Using a path for the name was allowing directory traversal, resulting in the potential writing of files under unwanted locations, the overwriting of existing files or their deletion. Thi |
- affected < 1.3.3fixed 1.3.3
The ODE process deployment web service was sensible to deployment messages with forged names. Using a path for the name was allowing directory traversal, resulting in the potential writing of files under unwanted locations, the overwriting of existing files or their deletion. Thi