Lucene search
China National Vulnerability DatabaseCNVD-2022-14705HistoryFeb 10, 2022 - 12:00 a.m.
Apache Pulsar input validation error vulnerability
2022-02-1000:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
apache pulsar
input validation
vulnerability
distributed messaging
cloud environments
multi-tenancy
persistent storage
data replication
data storage
bookkeeper
unauthenticated users
EPSS
0.002
Percentile
57.2%
Apache Pulsar is an Apache Foundation distributed messaging platform for cloud environments that integrates messaging, storage, and lightweight functional computing. The software supports multi-tenancy, persistent storage, multi-room cross-regional data replication, and highly scalable streaming data storage with strong consistency, high throughput, and low latency.Apache Pulsar suffers from an input validation error vulnerability that stems from a network system or product that does not properly validate input data. An attacker could exploit this vulnerability to access data from BookKeeper on topics that are accessible to unauthenticated users.
Related
cvelist
cvelist
osv
osv
Improper Input Validation in Apache Pulsar
2022-02-02 00:01:52
CVE-2021-41571
2022-02-01 13:15:09
github
github
Improper Input Validation in Apache Pulsar
2022-02-02 00:01:52
redhatcve
redhatcve
CVE-2021-41571
2022-01-31 17:58:24
prion
prion
Design/Logic Flaw
2022-02-01 13:15:00
veracode
veracode
Improper Input Validation
2022-02-03 11:03:51
nvd
nvd
CVE-2021-41571
2022-02-01 13:15:09
cve
cve
CVE-2021-41571
2022-02-01 13:15:09