CVE-2013-2186 High Severity Vulnerability detected by WhiteSource #3

mend-bolt-for-github · 2018-10-08T14:20:06Z

CVE-2013-2186 - High Severity Vulnerability

Vulnerable Library - commons-fileupload-1.3.jar

path: 2/repository/commons-fileupload/commons-fileupload/1.3/commons-fileupload-1.3.jar

Library home page: http://commons.apache.org/proper/commons-fileupload/

Dependency Hierarchy:

❌ commons-fileupload-1.3.jar (Vulnerable Library)

Found in commit: f396e60bf74726f66a202d308a1f2865177e4bee

Vulnerability Details

The DiskFileItem class in Apache Commons FileUpload, as used in Red Hat JBoss BRMS 5.3.1; JBoss Portal 4.3 CP07, 5.2.2, and 6.0.0; and Red Hat JBoss Web Server 1.0.2 allows remote attackers to write to arbitrary files via a NULL byte in a file name in a serialized instance.

Publish Date: 2013-10-28

URL: CVE-2013-2186

CVSS 2 Score Details (7.5)

Base Score Metrics not available

Step up your Open Source Security Game with WhiteSource here

mend-bolt-for-github bot added the security vulnerability Security vulnerability detected by WhiteSource label Oct 8, 2018

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CVE-2013-2186 High Severity Vulnerability detected by WhiteSource #3

CVE-2013-2186 High Severity Vulnerability detected by WhiteSource #3

mend-bolt-for-github bot commented Oct 8, 2018

CVE-2013-2186 High Severity Vulnerability detected by WhiteSource #3

CVE-2013-2186 High Severity Vulnerability detected by WhiteSource #3

Comments

mend-bolt-for-github bot commented Oct 8, 2018

CVE-2013-2186 - High Severity Vulnerability