Lucene search

CVE-2024-36268

🗓️ 02 Aug 2024 10:00:16Reported by [email protected]Type

Improper code generation control vulnerability in Apache InLong, versions 1.10.0 to 1.12.0, may lead to Remote Code Execution. Upgrade to version 1.13.0 or apply fix from https://github.com/apache/inlong/pull/1025

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
OSV	GHSA-QFF2-8QW7-HCVW Apache Inlong Code Injection vulnerability	2 Aug 202412:31	–	osv
CNVD	Apache InLong Code Injection Vulnerability (CNVD-2024-35666)	6 Aug 202400:00	–	cnvd
CVE	CVE-2024-36268	2 Aug 202410:16	–	cve
Cvelist	CVE-2024-36268 Apache InLong TubeMQ Client: Remote Code Execution vulnerability	2 Aug 202409:44	–	cvelist
Vulnrichment	CVE-2024-36268 Apache InLong TubeMQ Client: Remote Code Execution vulnerability	2 Aug 202409:44	–	vulnrichment
Veracode	Code Injection	5 Aug 202408:24	–	veracode
Github Security Blog	Apache Inlong Code Injection vulnerability	2 Aug 202412:31	–	github

Nvd

Node

apache inlongRange1.10.0–1.13.0

Source	Link
openwall	www.openwall.com/lists/oss-security/2024/08/02/5
lists	www.lists.apache.org/thread/1w1yp1bg5sjvn46dszkf00tz1vfs0frc

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

02 Aug 2024 10:16Current

CVSS39.8

EPSS0.02075

CWE-94