GHSA-j7r9-vcq6-6fv4HighCVSS 7.5

Path traversal in restore handler in Collibra Agent, allows an attacker to write arbitrary files...

Published
June 2, 2026
Last Modified
June 2, 2026

🔗 CVE IDs covered (1)

📋 Description

Path traversal in restore handler in Collibra Agent, allows an attacker to write arbitrary files via a crafted ZIP archive. Collibra Agent fails to properly validate and canonicalize file path during ZIP extraction, this can allow an attacker to write files outside the intended extraction directory.

🔗 References (4)