A vulnerability was found in jLEMS. It has been declared as critical. Affected by this vulnerability is the function unpackJar of the file src/main/java/org/lemsml/jlems/io/util/JUtil.java. The manipulation leads to path traversal. The attack can be launched remotely. The name of the patch is 8c224637d7d561076364a9e3c2c375daeaf463dc. It is recommended to apply a patch to fix this issue. The identifier VDB-216169 was assigned to this vulnerability.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/4xxx/CVE-2022-4583.json",
"cna_assigner": "VulDB",
"cwe_ids": [
"CWE-22"
]
}"2026-07-09T04:31:58Z"
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-4583.json"
[
{
"id": "CVE-2022-4583-3076639d",
"digest": {
"function_hash": "85637178508715191342609613947276225398",
"length": 623.0
},
"signature_version": "v1",
"signature_type": "Function",
"source": "https://github.com/lems/jlems/commit/8c224637d7d561076364a9e3c2c375daeaf463dc",
"deprecated": false,
"target": {
"function": "unpackJar",
"file": "src/main/java/org/lemsml/jlems/io/util/JUtil.java"
}
},
{
"id": "CVE-2022-4583-d0c2fb53",
"digest": {
"line_hashes": [
"152606805068696018789427731765077540029",
"266297286955623399310449074144817368415",
"326164573717228987909116196545931391959",
"297030734130383234503473496366310586026"
],
"threshold": 0.9
},
"signature_version": "v1",
"signature_type": "Line",
"source": "https://github.com/lems/jlems/commit/8c224637d7d561076364a9e3c2c375daeaf463dc",
"deprecated": false,
"target": {
"file": "src/main/java/org/lemsml/jlems/io/util/JUtil.java"
}
}
]