CVE-2022-40309
Improper Access Control in maven/org.apache.archiva/archiva-webapp
Identifiers
CVE-2022-40309
Package Slug
maven/org.apache.archiva/archiva-webapp
Vulnerability
Improper Access Control
Description
Users with write permissions to a repository can delete arbitrary directories.
Affected Versions
All versions before 2.2.9
Solution
Upgrade to version 2.2.9 or above.
Last Modified
2022-11-18
| source |