A vulnerability classified as critical was found in iceice666 ResourcePack Server up to 1.0.7. Affected by this vulnerability is the function setPath of the file ResourcePackFileServer.kt. The manipulation leads to path traversal.

This vulnerability is known as CVE-2024-35474. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.