CVE-2020-6950

HIGH7.5EPSS 51.7%

Directory traversal in Eclipse Mojarra

Published: 9/1/2021Modified: 11/8/2023

Description

Directory traversal in Eclipse Mojarra before 2.3.14 allows attackers to read arbitrary files via the loc parameter or con parameter.

Affected packages (1)

CVSS scores

SourceVersionSeverityVector
osvCVSS 3.1HIGH7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

References (8)