In Apache Maven maven-shared-utils prior to version 3.3.3, the Commandline class can emit double-quoted strings without proper escaping, allowing shell injection attacks.
Improper Encoding or Escaping of Output
Improper Neutralization of Special Elements used in a Command ('Command Injection')
3.9
-
3.9
-
-
-
-
-
-
3.9
-
-
3.9
-
-
-