Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

24 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-1145

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.01283EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-1114

Malicious code in bioql PyPI...

5.5CVSS5.5AI score0.00074EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/22 7:57 p.m.5 views

CVE-2021-36151

In Apache Gobblin, the Hadoop token is written to a temp file that is visible to all local users on Unix-like systems. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

5.5CVSS6.6AI score0.00074EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 6:39 p.m.6 views

CVE-2021-36152

Apache Gobblin trusts all certificates used for LDAP connections in Gobblin-as-a-Service. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

9.8CVSS6.8AI score0.01283EPSS
Exploits0References1
F5 Networks
F5 Networksadded 2023/02/21 6:47 p.m.30 views

K86569155: Apache Gobblin vulnerability CVE-2021-36152

Security Advisory Description Apache Gobblin trusts all certificates used for LDAP connections in Gobblin-as-a-Service. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue. CVE-2021-36152 Impact There is no impact; F5 products are not affected by this...

9.8CVSS9.1AI score0.01283EPSS
Exploits0
CNVD
CNVDadded 2022/03/18 12:0 a.m.13 views

Apache Gobblin Trust Management Issue Vulnerability

Apache Gobblin is a distributed data integration framework from the Apache Foundation USA. Used to simplify common aspects of big data integration, Apache Gobblin is vulnerable to a trust management issue that stems from Apache Gobblin trusting all certificates used for LDAP connections in...

9.8CVSS2.4AI score0.01283EPSS
Exploits0References1
CNVD
CNVDadded 2022/02/16 12:0 a.m.16 views

Apache Gobblin Information Disclosure Vulnerability

Apache Gobblin is a distributed data integration framework from the U.S. Apache Apache Foundation. It is used to simplify common aspects of big data integration. A security vulnerability exists in Apache Gobblin, which stems from a Hadoop token being written to a temporary file that is visible to...

5.5CVSS2.2AI score0.00074EPSS
Exploits0References1
Veracode
Veracodeadded 2022/02/07 8:23 a.m.19 views

Privilege Escalation

org.apache.gobblin:gobblin-utility is vulnerable to privilege escalation. Hadoop token is written to a temp file which is accessible via Unix systems allowing remote attackers to bypass restrictions and gain unauthorized access...

5.5CVSS7.7AI score0.00074EPSS
Exploits0References4Affected Software1
OSV
OSVadded 2022/02/06 12:1 a.m.10 views

GHSA-P435-W4XM-JJ8X Hadoop token in temp file visible to all users in Apache Gobblin

In Apache Gobblin, the Hadoop token is written to a temp file that is visible to all local users on Unix-like systems. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

5.5CVSS5.3AI score0.00074EPSS
Exploits0References2
Github Security Blog
Github Security Blogadded 2022/02/06 12:1 a.m.19 views

Apache Gobblin trusts all certificates used for LDAP connections in Gobblin-as-a-Service

Apache Gobblin trusts all certificates used for LDAP connections in Gobblin-as-a-Service. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

9.8CVSS8.9AI score0.01283EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2022/02/06 12:1 a.m.20 views

GHSA-Q5RX-8C2H-5Q7J Apache Gobblin trusts all certificates used for LDAP connections in Gobblin-as-a-Service

Apache Gobblin trusts all certificates used for LDAP connections in Gobblin-as-a-Service. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

9.8CVSS9.4AI score0.01283EPSS
Exploits0References2
Github Security Blog
Github Security Blogadded 2022/02/06 12:1 a.m.16 views

Hadoop token in temp file visible to all users in Apache Gobblin

In Apache Gobblin, the Hadoop token is written to a temp file that is visible to all local users on Unix-like systems. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

5.5CVSS5.4AI score0.00074EPSS
Exploits0References3Affected Software1
NVD
NVDadded 2022/02/04 11:15 p.m.8 views

CVE-2021-36152

Apache Gobblin trusts all certificates used for LDAP connections in Gobblin-as-a-Service. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

9.8CVSS0.01283EPSS
Exploits0References1
OSV
OSVadded 2022/02/04 11:15 p.m.1 views

CVE-2021-36151

In Apache Gobblin, the Hadoop token is written to a temp file that is visible to all local users on Unix-like systems. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

5.5CVSS5.8AI score0.00074EPSS
Exploits0References1
OSV
OSVadded 2022/02/04 11:15 p.m.0 views

CVE-2021-36152

Apache Gobblin trusts all certificates used for LDAP connections in Gobblin-as-a-Service. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

9.8CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2022/02/04 11:15 p.m.17 views

CVE-2021-36151

In Apache Gobblin, the Hadoop token is written to a temp file that is visible to all local users on Unix-like systems. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

5.5CVSS0.00074EPSS
Exploits0References1
Prion
Prionadded 2022/02/04 11:15 p.m.15 views

Design/Logic Flaw

Apache Gobblin trusts all certificates used for LDAP connections in Gobblin-as-a-Service. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

7.5CVSS9.4AI score0.01283EPSS
Exploits0References1Affected Software1
Prion
Prionadded 2022/02/04 11:15 p.m.8 views

Design/Logic Flaw

In Apache Gobblin, the Hadoop token is written to a temp file that is visible to all local users on Unix-like systems. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

2.1CVSS5.3AI score0.00074EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2022/02/04 10:32 p.m.9 views

CVE-2021-36152 Insecure TrustManager used in LDAP connections

Apache Gobblin trusts all certificates used for LDAP connections in Gobblin-as-a-Service. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

9.7AI score0.01283EPSS
Exploits0References1
CVE
CVEadded 2022/02/04 10:32 p.m.63 views

CVE-2021-36152

CVE-2021-36152 affects Apache Gobblin (Gobblin-as-a-Service) by using an insecure TrustManager that trusts all certificates for LDAP connections. Versions ≤ 0.15.0 are impacted; upgrading to 0.16.0 addresses the issue. No exploitation details are provided in the documents.

9.8CVSS9.5AI score0.01283EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder