CVE-2025-49656
published 2025-07-21CVE-2025-49656: Users with administrator access can create databases files outside the files area of the Fuseki server. This issue affects Apache Jena version up to 5.4.0…
high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
Users with administrator access can create databases files outside the files area of the Fuseki server.
This issue affects Apache Jena version up to 5.4.0.
Users are recommended to upgrade to version 5.5.0, which fixes the issue.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | jena | < 5.5.0 | 5.5.0 |
| apache_software_foundation | apache_jena | <= 5.4.0 | — |
| debian | apache-jena | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
osv7.5HIGH