org.apache.streampipes:streampipes-pipeline-management@0.93.0 vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the org.apache.streampipes:streampipes-pipeline-management package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Unrestricted Upload of File with Dangerous Type

Affected versions of this package are vulnerable to Unrestricted Upload of File with Dangerous Type through the upload functionality. An attacker can execute arbitrary code on the server by uploading malicious files. This is only exploitable if the user is authenticated and authorized.

How to fix Unrestricted Upload of File with Dangerous Type?

Upgrade org.apache.streampipes:streampipes-pipeline-management to version 0.95.0 or higher.

[0.93.0,0.95.0)