CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-23578

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.00029EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-24642

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.02342EPSS

Exploits0References3

CVE•added 2025/02/04 6:19 p.m.•63 views

CVE-2024-48019

CVE-2024-48019 : Apache Doris is affected by a path-traversal vulnerability exploitable via the REST API, allowing admins to read arbitrary files on the server. Connected sources specify affected versions are prior to 2.1.8 and prior to 3.0.3, with upgrades to 2.1.8+ or 3.0.3+ recommended as the ...

5.4CVSS6.8AI score0.00744EPSS

Exploits0References2Affected Software1

OSV•added 2024/03/21 10:15 a.m.•2 views

CVE-2024-27438

Download of Code Without Integrity Check vulnerability in Apache Doris. The jdbc driver files used for JDBC catalog is not checked and may resulting in remote command execution. Once the attacker is authorized to create a JDBC catalog, he/she can use arbitrary driver jar file with unchecked code...

9.8CVSS6AI score0.02342EPSS

Exploits0References2

Positive Technologies•added 2024/03/21 12:0 a.m.•2 views

PT-2024-2423 · Apache · Apache Doris

Name of the Vulnerable Software and Affected Versions: Apache Doris versions 1.2.0 through 2.0.4 Description: The issue is related to the download of code without integrity check in Apache Doris, which may result in remote command execution. An attacker authorized to create a JDBC catalog can use...

9.8CVSS9.4AI score0.02342EPSS

Exploits0References16

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by