CVE-2025-32951
- EPSS 0.38%
- Veröffentlicht 22.04.2025 17:32:23
- Zuletzt bearbeitet 31.12.2025 15:57:34
Jmix is a set of libraries and tools to speed up Spring Boot data-centric application development. In versions 1.0.0 to 1.6.1 and 2.0.0 to 2.3.4, the input parameter, which consists of a file path and name, can be manipulated to return the Content-Ty...
CVE-2025-32952
- EPSS 0.73%
- Veröffentlicht 22.04.2025 17:32:11
- Zuletzt bearbeitet 31.12.2025 15:55:53
Jmix is a set of libraries and tools to speed up Spring Boot data-centric application development. In versions 1.0.0 to 1.6.1 and 2.0.0 to 2.3.4, the local file storage implementation does not restrict the size of uploaded files. An attacker could ex...
CVE-2025-32950
- EPSS 0.51%
- Veröffentlicht 22.04.2025 17:14:43
- Zuletzt bearbeitet 31.12.2025 16:04:29
Jmix is a set of libraries and tools to speed up Spring Boot data-centric application development. In versions 1.0.0 to 1.6.1 and 2.0.0 to 2.3.4, attackers could manipulate the FileRef parameter to access files on the system where the Jmix applicatio...