CVE-2014-3625: Directory traversal flaw

November 20, 2014 (updated May 14, 2024)

Directory traversal vulnerability in this package allows remote attackers to read arbitrary files via unspecified vectors, related to static resource handling.

References

www.pivotal.io/security/cve-2014-3625
bugzilla.redhat.com/CVE-2014-3625
jira.spring.io/browse/SPR-12354

Detect and mitigate CVE-2014-3625 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →