CVE
CVE-2025-46701
| CVE ID |
CVE-2025-46701
|
|---|---|
| CVSS Score |
7.5
|
| Operating System | |
| Affected Versions | |
| Patched Versions | |
| Patch Date |
|
| Last Updated Date | |
| Vector String |
Additional Information
OL CVE Issue Summary:
Fixed an issue where, on case-insensitive file systems, security constraints defined on the pathInfo portion of URLs
mapped to the CGI servlet could be bypassed using specially crafted request paths. The fix ensures consistent case handling during security constraint evaluation, preventing unauthorized access to protected CGI resources under these conditions.