GHSA-4wfh-48v4-3r84, CVE-2022-45470
maven/org.apache.hama/hama-core
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
** UNSUPPORTED WHEN ASSIGNED ** missing input validation in Apache Hama may cause information disclosure through path traversal and XSS. Since Apache Hama is EOL, we do not expect these issues to be fixed.
All versions up to 0.7.1
Unfortunately, there is no solution available yet.
2022-11-22
source |