CVE-2020-13955

🗓️ 09 Oct 2020 13:11:15Reported by apacheType

CVE-2020-13955 - HttpUtils#getURLConnection vulnerability in Apache Calcit

Reporter	Title	Published	Views	Family All 11
CNVD	Apache Calcite Clickjacking Vulnerability	11 Oct 202000:00	–	cnvd
OSV	CVE-2020-13955	9 Oct 202013:15	–	osv
OSV	Missing Authentication for Critical Function in Apache Calcite	22 Apr 202116:14	–	osv
Github Security Blog	Missing Authentication for Critical Function in Apache Calcite	22 Apr 202116:14	–	github
Prion	Design/Logic Flaw	9 Oct 202013:15	–	prion
GithubExploit	Exploit for Improper Input Validation in Jiangmin Jiangmin Antivirus	8 Oct 202014:41	–	githubexploit
Veracode	Man-in-the-Middle (MitM)	12 Oct 202002:14	–	veracode
Cvelist	CVE-2020-13955	9 Oct 202012:33	–	cvelist
NVD	CVE-2020-13955	9 Oct 202013:15	–	nvd
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM includes components with known vulnerabilities	29 Jun 202315:03	–	ibm

Nvd

Vulners

Node

apache calciteRange<1.26

[
  {
    "product": "Apache Calcite",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Apache Calcite 0.8 to 1.25"
      }
    ]
  }
]

Source	Link
lists	www.lists.apache.org/thread.html/r0b0fbe2038388175951ce1028182d980f9e9a7328be13d52dab70bb3%40%3Cdev.calcite.apache.org%3E

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Oct 2020 13:15Current

5.3Medium risk

Vulners AI Score5.3

CVSS24.3

CVSS35.9

EPSS0.01165

CWE-295