CVE-2023-36479
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in maven/org.eclipse.jetty.ee10/jetty-ee10-servlets
Identifiers
GHSA-3gh6-v5v9-6v9j, CVE-2023-36479
Package Slug
maven/org.eclipse.jetty.ee10/jetty-ee10-servlets
Vulnerability
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Description
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in org.eclipse.jetty.ee10:jetty-ee10-servlets.
Affected Versions
All versions up to 12.0.0-beta1
Solution
Upgrade to version 12.0.0-beta2 or above. Note: 12.0.0-beta2 may be an unstable version. Use caution.
Last Modified
2023-09-15
| source |