There is a Directory traversal vulnerability in Caucho Resin, as distributed in Resin 4.0.52 - 4.0.56, which allows remote attackers to read files in arbitrary directories via a ; in a pathname within an HTTP request.
{
"github_reviewed_at": "2022-04-22T20:22:27Z",
"nvd_published_at": "2022-04-04T13:15:00Z",
"github_reviewed": true,
"cwe_ids": [
"CWE-22"
],
"severity": "HIGH"
}