In Apache Archiva 2.0.0 - 2.2.3, it is possible to write files to the archiva server at arbitrary locations by using the artifact upload mechanism. Existing files can be overwritten, if the archiva run user has appropriate permission on the filesystem for the target file.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: apache

Published: 2019-04-30T21:48:54

Updated: 2024-08-04T17:44:14.813Z

Reserved: 2018-11-14T00:00:00

Link: CVE-2019-0214

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-04-30T22:29:01.027

Modified: 2023-11-07T03:01:50.747

Link: CVE-2019-0214

cve-icon Redhat

No data.