Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2022-69469
HistorySep 28, 2022 - 12:00 a.m.

Apache Pulsar Proxy Input Validation Error Vulnerability

2022-09-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
apache pulsar
input validation
proxy
vulnerability
authentication bypass

0.001 Low

EPSS

Percentile

25.1%

Apache Pulsar is an Apache Foundation distributed messaging platform for cloud environments that integrates messaging, storage, and lightweight functional computing. The software supports multi-tenancy, persistent storage, multi-room cross-regional data replication, with strong consistency, high throughput and low latency highly scalable streaming data storage features. Apache Pulsar Proxy has an input validation error vulnerability, which stems from incorrect input validation in the proxy component, and can be used by attackers to bypass Pulsar Proxy authentication.

0.001 Low

EPSS

Percentile

25.1%