Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-4244

A flaw was found in codeplex-codehaus. A directory traversal attack (also known as path traversal) aims to access files and directories stored outside the intended folder. By manipulating files with "dot-dot-slash (../)" sequences and their variations or by using absolute file paths, it may be possible to access arbitrary files and directories stored on the file system, including application source code, configuration, and other critical system files.

Published

2023-09-25T20:15:10.220

Last Modified

2025-05-05T14:12:14.513

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Primary
CWE-22
Type: Secondary
CWE-22

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	codehaus-plexus	plexus-utils	< 3.0.24	Yes
Application	redhat	integration_camel_k	< 1.10.1	Yes

References

https://access.redhat.com/errata/RHSA-2023:2135 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2023:3906 Third Party Advisory ([email protected])
https://access.redhat.com/security/cve/CVE-2022-4244 Third Party Advisory ([email protected])
https://bugzilla.redhat.com/show_bug.cgi?id=2149841 Issue Tracking, Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2023:2135 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2023:3906 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/security/cve/CVE-2022-4244 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=2149841 Issue Tracking, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)