Lucene search
GoogleOSV:CVE-2020-13937HistoryOct 19, 2020 - 9:15 p.m.
CVE-2020-13937
2020-10-1921:15:12
Google
osv.dev
2
Apache Kylin 2.0.0, 2.1.0, 2.2.0, 2.3.0, 2.3.1, 2.3.2, 2.4.0, 2.4.1, 2.5.0, 2.5.1, 2.5.2, 2.6.0, 2.6.1, 2.6.2, 2.6.3, 2.6.4, 2.6.5, 2.6.6, 3.0.0-alpha, 3.0.0-alpha2, 3.0.0-beta, 3.0.0, 3.0.1, 3.0.2, 3.1.0, 4.0.0-alpha has one restful api which exposed Kylin’s configuration information without any authentication, so it is dangerous because some confidential information entries will be disclosed to everyone.
Related
prion
prion
Authentication flaw
2020-10-19 21:15:00
githubexploit
githubexploit
Exploit for Insecure Storage of Sensitive Information in Apache Kylin
2021-01-15 08:57:09
Exploit for Insecure Storage of Sensitive Information in Apache Kylin
2021-01-22 06:53:34
nuclei
nuclei
Apache Kylin - Exposed Configuration File
2021-01-30 00:28:31
veracode
veracode
Exposed API
2020-11-02 06:45:57
osv
osv
Authentication bypass in Apache Kylin
2022-02-10 20:25:56
cvelist
cvelist
CVE-2020-13937
2020-10-19 20:33:18
nvd
nvd
CVE-2020-13937
2020-10-19 21:15:12
github
github
Authentication bypass in Apache Kylin
2022-02-10 20:25:56
cve
cve
CVE-2020-13937
2020-10-19 21:15:12