Security Advisory

CVE-2020-27219

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-01-14 22:20:13

Last updated 2024-08-04 16:11:36

Assigner eclipse

State PUBLISHED

Description

In all version of Eclipse Hawkbit prior to 0.3.0M7, the HTTP 404 (Not Found) JSON response body returned by the REST API may contain unsafe characters within the path attribute. Sending a POST request to a non existing resource will return the full path from the given URL unescaped to the client.

← Browse all CVEs View on cve.org ↗