CVE-2024-23673: Apache Sling Servlets Resolver: Malicious code execution via path traversal

CVE-2024-23673: Apache Sling Servlets Resolver: Malicious code execution via path traversal

Open Source Security [[{„value“:“

Posted by Carsten Ziegeler on Feb 06

Affected versions:

– Apache Sling Servlets Resolver before 2.11.0

Description:

Malicious code execution via path traversal in Apache Software Foundation Apache Sling Servlets Resolver.This issue
affects all version of Apache Sling Servlets Resolver before 2.11.0. However, whether a system is vulnerable to this
attack depends on the exact configuration of the system.
If the system is vulnerable, a user with write access to the repository…
„}]] Read More 

Schreibe einen Kommentar

Deine E-Mail-Adresse wird nicht veröffentlicht. Erforderliche Felder sind mit * markiert