EUVD-2022-1114

Malicious code in bioql PyPI...

CVE-2021-36151

In Apache Gobblin, the Hadoop token is written to a temp file that is visible to all local users on Unix-like systems. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

Apache Gobblin Information Disclosure Vulnerability

Apache Gobblin is a distributed data integration framework from the U.S. Apache Apache Foundation. It is used to simplify common aspects of big data integration. A security vulnerability exists in Apache Gobblin, which stems from a Hadoop token being written to a temporary file that is visible to...

Privilege Escalation

org.apache.gobblin:gobblin-utility is vulnerable to privilege escalation. Hadoop token is written to a temp file which is accessible via Unix systems allowing remote attackers to bypass restrictions and gain unauthorized access...

GHSA-P435-W4XM-JJ8X Hadoop token in temp file visible to all users in Apache Gobblin

In Apache Gobblin, the Hadoop token is written to a temp file that is visible to all local users on Unix-like systems. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

Hadoop token in temp file visible to all users in Apache Gobblin

In Apache Gobblin, the Hadoop token is written to a temp file that is visible to all local users on Unix-like systems. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

CVE-2021-36151

In Apache Gobblin, the Hadoop token is written to a temp file that is visible to all local users on Unix-like systems. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

CVE-2021-36151

In Apache Gobblin, the Hadoop token is written to a temp file that is visible to all local users on Unix-like systems. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

CVE-2021-36151

Summary: CVE-2021-36151 affects Apache Gobblin. The Hadoop token is written to a temporary file that is visible to all local users on Unix-like systems, enabling local information disclosure. Affected versions are 0.15.0 and earlier; the issue is addressed in 0.16.0. Root cause (as described in s...

Apache Gobblin 信息泄露漏洞

Apache Gobblin is a distributed data integration framework from the U.S. Apache Apache Foundation. It is used to simplify common aspects of big data integration. A security vulnerability exists in Apache Gobblin, which stems from a Hadoop token being written to a temporary file that is visible to...