Users with write permissions to a repository can delete arbitrary directories.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2022/11/15/3 | Mailing List Third Party Advisory |
https://lists.apache.org/thread/1odl4p85r96n27k577jk6ftrp19xfc27 | Issue Tracking Mailing List Vendor Advisory |
Configurations
History
17 Nov 2022, 04:54
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:apache:archiva:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.3 |
First Time |
Apache archiva
Apache |
|
References | (CONFIRM) https://lists.apache.org/thread/1odl4p85r96n27k577jk6ftrp19xfc27 - Issue Tracking, Mailing List, Vendor Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2022/11/15/3 - Mailing List, Third Party Advisory | |
CWE | NVD-CWE-noinfo |
15 Nov 2022, 16:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
15 Nov 2022, 13:51
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-11-15 13:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-40309
Mitre link : CVE-2022-40309
CVE.ORG link : CVE-2022-40309
JSON object : View
Products Affected
apache
- archiva
CWE