Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-P2GX-4434-PF6G
HistoryMar 06, 2024 - 12:30 p.m.

Apache InLong: Logged-in user could exploit an arbitrary file read vulnerability

2024-03-0612:30:29
Google
osv.dev
7
apache inlong
arbitrary file read
deserialization vulnerability
software vulnerability

AI Score

6.4

Confidence

High

EPSS

0

Percentile

9.0%

JSON

Deserialization of Untrusted Data vulnerability in Apache InLong.This issue affects Apache InLong: from 1.8.0 through 1.10.0, the attackers can

use the specific payload to read from an arbitrary file. Users are advised to upgrade to Apache InLong’s 1.11.0 or cherry-pick [1] to solve it.

[1] https://github.com/apache/inlong/pull/9673

Related

cvelist 1
cnvd 1
veracode 1
vulnrichment 1
cve 1
github 1
prion 1
nvd 1
cvelist
cvelist
CVE-2024-26580 Apache InLong: Logged-in user could exploit an arbitrary file read vulnerability
2024-03-06 12:07:28
cnvd
cnvd
Apache InLong Code Issue Vulnerability (CNVD-2024-16113)
2024-03-12 00:00:00
veracode
veracode
Deserialization Of Untrusted Data
2024-03-07 07:45:40
vulnrichment
vulnrichment
CVE-2024-26580 Apache InLong: Logged-in user could exploit an arbitrary file read vulnerability
2024-03-06 12:07:28
cve
cve
CVE-2024-26580
2024-03-06 12:15:45
github
github
Apache InLong: Logged-in user could exploit an arbitrary file read vulnerability
2024-03-06 12:30:29
prion
prion
Deserialization of untrusted data
2024-03-06 12:15:00
nvd
nvd
CVE-2024-26580
2024-03-06 12:15:45

AI Score

6.4

Confidence

High

EPSS

0

Percentile

9.0%

JSON
Related for OSV:GHSA-P2GX-4434-PF6G
cvelist1cnvd1veracode1vulnrichment1cve1github1prion1nvd1