CVE-2023-33245 Information

Description

Minecraft through 1.19 and 1.20 pre-releases before 7 (Java) allow arbitrary file overwrite and possibly code execution via crafted world data that contains a symlink.

Reference

https://www.minecraft.net/ja-jp/article/minecraft-1-20-pre-release-7 https://help.minecraft.net/hc/en-us/articles/16165590199181 https://vuln.ryotak.net/advisories/67