Knstvk

**Name of the Vulnerable Software and Affected Versions** Jmix versions 1.0.0 through 1.6.1 Jmix versions 2.0.0 through 2.3.4 **Description** The local file storage implementation in Jmix does not restrict the size of uploaded files, allowing an attacker to upload excessively large files and potentially cause the server to run out of space, resulting in a denial of service. **Recommendations** For versions 1.0.0 through 1.6.1, update to version 1.6.2. For versions 2.0.0 through 2.3.4, update to version 2.4.0. As a temporary workaround, consider restricting the size of uploaded files to prevent excessive file uploads until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** CUBA Platform versions prior to 7.2.23 **Description** The local file storage implementation in CUBA Platform does not restrict the size of uploaded files, allowing an attacker to upload excessively large files. This could cause the server to run out of space and return an HTTP 500 error, resulting in a denial of service. **Recommendations** For versions prior to 7.2.23, update to version 7.2.23 to resolve the issue. As a temporary workaround, consider implementing file size restrictions on the local file storage implementation until the patch is applied.

**Name of the Vulnerable Software and Affected Versions** Cuba JPA versions prior to 1.1.1 **Description** The Cuba JPA web API allows loading and saving entities defined in the application data model through simple HTTP requests. Prior to version 1.1.1, the input parameter, which includes a file path and name, can be manipulated to return the Content-Type header with text/html if the name part ends with .html. This could allow malicious JavaScript code to be executed in the browser. For a successful attack, a malicious file needs to be uploaded beforehand. **Recommendations** For versions prior to 1.1.1, update to version 1.1.1 to resolve the issue. As a temporary workaround, consider using the workaround provided on the Jmix documentation website until the update to version 1.1.1 can be applied.

**Name of the Vulnerable Software and Affected Versions** Jmix versions 1.0.0 through 1.6.1 Jmix versions 2.0.0 through 2.3.4 **Description** The issue affects Jmix, a set of libraries and tools for Spring Boot data-centric application development. It allows manipulation of the input parameter, which consists of a file path and name, to return the Content-Type header with text/html if the name part ends with .html. This could enable malicious JavaScript code to be executed in the browser. A successful attack requires a malicious file to be uploaded beforehand. **Recommendations** For versions 1.0.0 through 1.6.1, update to version 1.6.2. For versions 2.0.0 through 2.3.4, update to version 2.4.0. As a temporary workaround, consider using the workaround provided on the Jmix documentation website.