GHSA-j7r9-vcq6-6fv4HighCVSS 7.5
Path traversal in restore handler in Collibra Agent, allows an attacker to write arbitrary files...
🔗 CVE IDs covered (1)
📋 Description
Path traversal in restore handler in Collibra Agent, allows an attacker to write arbitrary files via a crafted ZIP archive. Collibra Agent fails to properly validate and canonicalize file path during ZIP extraction, this can allow an attacker to write files outside the intended extraction directory.