CVE-2022-23457
HIGHOwasp Enterprise Security API < 2.3.0.0 - Path Traversal
Title source: ruleDescription
ESAPI (The OWASP Enterprise Security API) is a free, open source, web application security control library. Prior to version 2.3.0.0, the default implementation of `Validator.getValidDirectoryPath(String, String, File, boolean)` may incorrectly treat the tested input string as a child of the specified parent directory. This potentially could allow control-flow bypass checks to be defeated if an attack can specify the entire string representing the 'input' path. This vulnerability is patched in release 2.3.0.0 of ESAPI. As a workaround, it is possible to write one's own implementation of the Validator interface. However, maintainers do not recommend this.
Exploits (3)
nomisec
STUB
by dawetmaster · poc
https://github.com/dawetmaster/CVE-2022-23457-esapi-java-legacy-vulnerable
nomisec
STUB
by andikahilmy · poc
https://github.com/andikahilmy/CVE-2022-23457-esapi-java-legacy-vulnerable
nomisec
WRITEUP
by shoucheng3 · poc
https://github.com/shoucheng3/ESAPI__esapi-java-legacy_CVE-2022-23457_2-2-3-1
References (6)
Scores
CVSS v3
7.5
EPSS
0.0025
EPSS Percentile
48.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-22
Status
published
Products (7)
netapp/active_iq_unified_manager
(3 CPE variants)
netapp/oncommand_workflow_automation
oracle/weblogic_server
12.2.1.3.0
oracle/weblogic_server
12.2.1.4.0
oracle/weblogic_server
14.1.1.0.0
org.owasp.esapi/esapi
0 - 2.3.0.0Maven
owasp/enterprise_security_api
< 2.3.0.0
Published
Apr 25, 2022
Tracked Since
Feb 18, 2026