GHSA-4wfh-48v4-3r84

Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/11/GHSA-4wfh-48v4-3r84/GHSA-4wfh-48v4-3r84.json
Aliases
  • CVE-2022-45470
Published
2022-11-21T18:30:38Z
Modified
2022-11-23T19:39:38.077412Z
Details

Missing input validation in Apache Hama may cause information disclosure through path traversal and XSS. Since Apache Hama is EOL, we do not expect these issues to be fixed.

References

Affected packages

Maven / org.apache.hama:hama-core

org.apache.hama:hama-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0
Last affected
0.7.1

Affected versions

0.*

0.3.0-incubating
0.4.0-incubating
0.5.0
0.6.0
0.6.1
0.6.2
0.6.3
0.6.4
0.7.0
0.7.1