Vulnerabilities > Hutool > Hutool > 4.1.1

DATE CVE VULNERABILITY TITLE RISK
2023-06-13 CVE-2023-33695 Incorrect Permission Assignment for Critical Resource vulnerability in Hutool
Hutool v5.8.17 and below was discovered to contain an information disclosure vulnerability via the File.createTempFile() function at /core/io/FileUtil.java.
local
low complexity
hutool CWE-732
7.1
7.1
2022-12-16 CVE-2022-4565 Improper Resource Shutdown or Release vulnerability in Hutool
A vulnerability classified as problematic was found in Dromara HuTool up to 5.8.10.
network
low complexity
hutool CWE-404
7.5
7.5
2018-09-21 CVE-2018-17297 Path Traversal vulnerability in Hutool
The unzip function in ZipUtil.java in Hutool before 4.1.12 allows remote attackers to overwrite arbitrary files via directory traversal sequences in a filename within a ZIP archive.
network
low complexity
hutool CWE-22
6.4
6.4