CVE-2025-0851 | Amazon AWS DeepJavaLibrary up to 0.31.0 ZipUtils.unzip/TarUtils.untar absolute path traversal (AWS-2025-003)

Inserito da Angelo Barbosa | Gen 29, 2025 | CVE

A vulnerability was found in Amazon AWS DeepJavaLibrary up to 0.31.0. It has been classified as very critical. Affected is the function ZipUtils.unzip/TarUtils.untar. The manipulation leads to absolute path traversal.

This vulnerability is traded as CVE-2025-0851. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-0851 | Amazon AWS DeepJavaLibrary up to 0.31.0 ZipUtils.unzip/TarUtils.untar absolute path traversal (AWS-2025-003)

Post correlati

CVE-2024-32501 | Centreon prior 22.04.24/22.10.22/23.04.18/23.10.12/24.04.0 updateServiceHost_MC sql injection

CVE-2024-8732 | Roles & Capabilities Plugin up to 1.1.9 on WordPress cross site scripting

CVE-2024-46328 | Vonets VAP11G-300 3.3.23.6.9 hard-coded credentials

CVE-2024-35172 | ShortPixel Adaptive Images Plugin up to 3.8.3 on WordPress server-side request forgery