Description
In SCIMono before 0.0.19, it is possible for an attacker to inject and execute java expression compromising the availability and integrity of the system.
Remediation
References
https://github.com/SAP/scimono/security/advisories/GHSA-29q4-gxjq-rx5c
Related Vulnerabilities
CVE-2016-10576 Vulnerability in npm package fuseki
CVE-2018-20835 Vulnerability in npm package tar-fs
CVE-2021-39157 Vulnerability in npm package detect-character-encoding
CVE-2018-8013 Vulnerability in maven package org.eclipse.birt.runtime:org.apache.batik.dom
CVE-2020-23262 Vulnerability in maven package net.mingsoft:ms-mcms