QID 980851

QID 980851: Java (maven) Security Update for com.bstek.ureport:ureport2-console (GHSA-729f-wvj3-c4pj)

An arbitrary file creation vulnerability in UReport 2.2.9 allows attackers to execute arbitrary code.

Successful exploitation of this vulnerability may affect the confidentiality, integrity, and availability of the targeted user.

  • CVSS V3 rated as Critical - 9.8 severity.
  • CVSS V2 rated as High - 7.5 severity.
  • Solution
    Customers are advised to refer to GHSA-729f-wvj3-c4pj for updates pertaining to this vulnerability.
    Vendor References

    CVEs related to QID 980851

    Software Advisories
    Advisory ID Software Component Link
    GHSA-729f-wvj3-c4pj com.bstek.ureport:ureport2-console URL Logo github.com/advisories/GHSA-729f-wvj3-c4pj