A vulnerability was found in FHIR Core Libraries on CVE. It has been rated as critical. Affected by this issue is some unknown functionality of the component package-decompression. The manipulation leads to path traversal.
This vulnerability is handled as CVE-2023-28465. The attack needs to be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.