Known Vulnerabilities for products from Pf4j Project
Listed below are 4 of the newest known vulnerabilities associated with the vendor "Pf4j Project".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-70952 json | pf4j before 20c2f80 has a path traversal vulnerability in the extract() function of Unzip.java, where improper handling of zi... | Not Provided | 2026-03-25 | 2026-04-01 |
| CVE-2023-40828 json | An issue in pf4j pf4j v.3.9.0 and before allows a remote attacker to obtain sensitive information and execute arbitrary code ... | 7.5 - HIGH | 2023-08-28 | 2023-08-29 |
| CVE-2023-40827 json | An issue in pf4j pf4j v.3.9.0 and before allows a remote attacker to obtain sensitive information and execute arbitrary code ... | 7.5 - HIGH | 2023-08-28 | 2023-08-29 |
| CVE-2023-40826 json | An issue in pf4j pf4j v.3.9.0 and before allows a remote attacker to obtain sensitive information and execute arbitrary code ... | 7.5 - HIGH | 2023-08-28 | 2023-08-29 |