Vmware: >> Spring Cloud Data Flow >> 2.11.1 Security Vulnerabilities
In Spring Cloud Data Flow versions prior to 2.11.4, a malicious user who has access to the Skipper server api can use a crafted upload request to write an arbitrary file to any location on the file system which could lead to compromising the server
CVSS Score
9.8
EPSS Score
0.731
Published
2024-07-25