CVE-2025-67030

Published: Mar 25, 2026

Modified: Mar 27, 2026

PUBLISHED

Description

Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils before 6d780b3378829318ba5c2d29547e0012d5b29642. This allows an attacker to execute arbitrary code

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/codehaus-plexus/plexus-utils/pull/295

https://github.com/codehaus-plexus/plexus-utils/issues/294

https://github.com/codehaus-plexus/plexus-utils/commit/6d780b3378829318ba5c2d29547e0012d5b29642

https://github.com/codehaus-plexus/plexus-utils/pull/296

https://gist.github.com/weaver4VD/3216dac645220f8c9b488362f61241ec

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-67030

Description

Affected Products

References