CVE-2023-22320 Information

Description

OpenAM Web Policy Agent (OpenAM Consortium Edition) provided by OpenAM Consortium parses URLs improperly leading to a path traversal vulnerability(CWE-22). Furthermore a crafted URL may be evaluated incorrectly.

Reference

https://jvn.jp/en/vu/JVN91740661/ https://github.com/openam-jp/web-agents/issues/3