CVE-2022-40309
Apache Archiva subject to arbitrary directory deletion by users. in maven/org.apache.archiva/archiva-common
Identifiers
GHSA-xgq8-jq9w-77r5, CVE-2022-40309
Package Slug
maven/org.apache.archiva/archiva-common
Vulnerability
Apache Archiva subject to arbitrary directory deletion by users.
Description
Users with write permissions to a repository can delete arbitrary directories.
Affected Versions
All versions before 2.2.9
Solution
Upgrade to version 2.2.9 or above.
Last Modified
2022-11-22
| source |