Name of the Vulnerable Software and Affected Versions Spring Framework (affected versions not specified)

Description The issue is related to the org.springframework.web.multipart package of the Spring Web module in the Spring Framework, which is associated with incorrect restriction of the path name to a directory with limited access. This could allow a remote attacker to overwrite files located in the web server directory.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.