VYPR

Java Code Security Toolkit

by pixee

CVEs (1)

  • CVE-2024-24569MedFeb 1, 2024
    risk 0.00cvss 5.4epss 0.01

    The Pixee Java Code Security Toolkit is a set of security APIs meant to help secure Java code. `ZipSecurity#isBelowCurrentDirectory` is vulnerable to a partial-path traversal bypass. To be vulnerable to the bypass, the application must use toolkit version <=1.1.1, use…