/
DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2022-4245

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2022-4245

CGA ID

CGA-jc3c-hvq2-v3hf

Severity

Unknown

Description

A flaw was found in codehaus-plexus. The org.codehaus.plexus.util.xml.XmlWriterUtil#writeComment fails to sanitize comments for a --> sequence. This issue means that text contained in the command string could be interpreted as XML and allow for XML injection.

References

Affected packages


Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Products

Chainguard ContainersChainguard LibrariesChainguard VMs