Description
In SCIMono before 0.0.19, it is possible for an attacker to inject and execute java expression compromising the availability and integrity of the system.
Remediation
References
https://github.com/SAP/scimono/security/advisories/GHSA-29q4-gxjq-rx5c
Related Vulnerabilities
CVE-2018-1000665 Vulnerability in maven package org.webjars.bowergithub.dojo:dojo
CVE-2017-5662 Vulnerability in maven package org.apache.xmlgraphics:batik-rasterizer
CVE-2021-23574 Vulnerability in npm package js-data
CVE-2017-16056 Vulnerability in npm package mssql.js
CVE-2019-1353 Vulnerability in maven package org.webjars.npm:nodegit