Lucene search
GitHub Advisory DatabaseGHSA-Q9P5-W2V9-6WXFHistoryFeb 01, 2023 - 12:32 p.m.
Apache InLong contains Out-of-bounds Read vulnerability
2023-02-0112:32:41
CWE-125
GitHub Advisory Database
github.com
12
apache inlong
out-of-bounds read
vulnerability
software foundation
upgrade
github
patch
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.002
Percentile
52.9%
Out-of-bounds Read vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0. Users are advised to upgrade to Apache InLong’s latest version or cherry-pick https://github.com/apache/inlong/pull/7214 to solve it.
Affected configurations
Node
org.apache.inlonginlongRange1.1.0–1.5.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| org.apache.inlong | inlong | * | cpe:2.3:a:org.apache.inlong:inlong:*:*:*:*:*:*:*:* |
Related
osv
osv
CVE-2023-24977
2023-02-01 10:15:10
Apache InLong contains Out-of-bounds Read vulnerability
2023-02-01 12:32:41
veracode
veracode
Out-Of-Bounds Read
2023-02-02 06:11:10
cvelist
cvelist
cve
cve
CVE-2023-24977
2023-02-01 10:15:10
prion
prion
Cross site scripting
2023-02-01 10:15:00
cnvd
cnvd
Apache InLong Information Disclosure Vulnerability
2023-02-03 00:00:00
nvd
nvd
CVE-2023-24977
2023-02-01 10:15:10
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.002
Percentile
52.9%
Related for GHSA-Q9P5-W2V9-6WXF