Gravitee API Management before 3.15.13 allows path traversal through HTML injection.
References
Link | Resource |
---|---|
https://community.gravitee.io/t/whats-new-in-access-management-3-15-lts/164 | Release Notes Vendor Advisory |
https://gist.github.com/garatc/d86cdb1fa2e35a7ee719d9a0de0b5ca3 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-01-03T00:00:00
Updated: 2023-01-03T00:00:00
Reserved: 2022-08-24T00:00:00
Link: CVE-2022-38723
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-01-03T22:15:11.860
Modified: 2023-01-23T19:02:43.947
Link: CVE-2022-38723
JSON object: View
Redhat Information
No data.