CVE-2022-40309

Summary

Users with write permissions to a repository can delete arbitrary directories.

Affected Software

VendorProductVersion RangeStatus
Apache Software FoundationApache Archivaunspecified <= 2.2.8affected

Weaknesses

  • Arbitrary directory deletion

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References