A path traversal vulnerability exists in the Java version...
High severity
Unreviewed
Published
Apr 5, 2024
to the GitHub Advisory Database
•
Updated Apr 5, 2024
Description
Published by the National Vulnerability Database
Apr 5, 2024
Published to the GitHub Advisory Database
Apr 5, 2024
Last updated
Apr 5, 2024
A path traversal vulnerability exists in the Java version of CData Sync < 23.4.8843 when running using the embedded Jetty server, which could allow an unauthenticated remote attacker to gain access to sensitive information and perform limited actions.
References