Svi
Pretraži prema proizvođaču
Pretraži prema CWE oznaci
O usluzi
Pretplate
Jezik
hr
en
CVE-2025-67030 - CERT CVE
CVE-2025-67030
ID
CVE-2025-67030
Sažetak
Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils before 6d780b3378829318ba5c2d29547e0012d5b29642. This allows an attacker to execute arbitrary code
Reference
https://gist.github.com/weaver4VD/3216dac645220f8c9b488362f61241ec
https://github.com/codehaus-plexus/plexus-utils/commit/6d780b3378829318ba5c2d29547e0012d5b29642
https://github.com/codehaus-plexus/plexus-utils/issues/294
https://github.com/codehaus-plexus/plexus-utils/pull/295
https://github.com/codehaus-plexus/plexus-utils/pull/296
https://access.redhat.com/errata/RHSA-2026:17668
https://access.redhat.com/errata/RHSA-2026:18054
https://access.redhat.com/errata/RHSA-2026:18055
https://access.redhat.com/errata/RHSA-2026:18059
https://access.redhat.com/errata/RHSA-2026:35990
https://access.redhat.com/errata/RHSA-2026:35991
https://access.redhat.com/errata/RHSA-2026:35992
https://access.redhat.com/errata/RHSA-2026:35996
https://access.redhat.com/errata/RHSA-2026:35997
https://access.redhat.com/errata/RHSA-2026:36012
https://access.redhat.com/errata/RHSA-2026:38514
https://access.redhat.com/errata/RHSA-2026:38796
https://access.redhat.com/errata/RHSA-2026:7109
https://access.redhat.com/errata/RHSA-2026:7380
https://access.redhat.com/security/cve/CVE-2025-67030
https://bugzilla.redhat.com/show_bug.cgi?id=2451409
https://security.access.redhat.com/data/csaf/v2/vex/2025/cve-2025-67030.json
CVSS
Base:
8.8
Impact:
5.9
Exploitability:
2.8
Pristup
Vektor
Složenost
Autentikacija
NETWORK
LOW
NONE
Impact
Povjerljivost
Cjelovitost
Dostupnost
HIGH
HIGH
HIGH
CVSS vektor
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Zadnje važnije ažuriranje
13-07-2026 - 13:16
Objavljeno
25-03-2026 - 18:16