Lucene search
K

434 matches found

CNVD
CNVD
added 2023/02/03 12:0 a.m.16 views

Apache InLong Information Disclosure Vulnerability

Apache InLong is the United States Apache Apache Foundation's one-stop massive data integration framework. An information disclosure vulnerability exists in Apache InLong. An attacker can exploit this vulnerability to read arbitrary files on the system...

7.5CVSS6.4AI score0.0116EPSS
Exploits0References1
OSV
OSV
added 2023/02/01 3:30 p.m.19 views

GHSA-22J4-QC48-J8F8 Apache InLong vulnerable to Deserialization of Untrusted Data vulnerability

Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache InLong. This issue affects Apache InLong: from 1.1.0 through 1.5.0. Users are advised to upgrade to Apache InLong's latest version or cherry-pick https://github.com/apache/inlong/pull/7223 to solve it...

9.8CVSS9.4AI score0.01409EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2023/02/01 3:30 p.m.25 views

Apache InLong vulnerable to Deserialization of Untrusted Data vulnerability

Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache InLong. This issue affects Apache InLong: from 1.1.0 through 1.5.0. Users are advised to upgrade to Apache InLong's latest version or cherry-pick https://github.com/apache/inlong/pull/7223 to solve it...

9.8CVSS8.9AI score0.01409EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2023/02/01 3:15 p.m.11 views

CVE-2023-24997

Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0. Users are advised to upgrade to Apache InLong's latest version or cherry-pick https://github.com/apache/inlong/pull/7223...

9.8CVSS9.5AI score
Exploits0References1
NVD
NVD
added 2023/02/01 3:15 p.m.14 views

CVE-2023-24997

Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0. Users are advised to upgrade to Apache InLong's latest version or cherry-pick https://github.com/apache/inlong/pull/7223...

9.8CVSS9.5AI score0.01409EPSS
Exploits0References1
Prion
Prion
added 2023/02/01 3:15 p.m.12 views

Deserialization of untrusted data

Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0. Users are advised to upgrade to Apache InLong's latest version or cherry-pick https://github.com/apache/inlong/pull/7223...

7.5CVSS9.4AI score0.01409EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/02/01 2:49 p.m.6 views

CVE-2023-24997 Apache InLong: Jdbc Connection Security Bypass

Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0. Users are advised to upgrade to Apache InLong's latest version or cherry-pick https://github.com/apache/inlong/pull/7223...

7.2AI score0.01409EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/02/01 2:49 p.m.28 views

CVE-2023-24997 Apache InLong: Jdbc Connection Security Bypass

Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0. Users are advised to upgrade to Apache InLong's latest version or cherry-pick https://github.com/apache/inlong/pull/7223...

9.7AI score0.01409EPSS
Exploits0References1
CVE
CVE
added 2023/02/01 2:49 p.m.87 views

CVE-2023-24997

CVE-2023-24997 describes a Deserialization of Untrusted Data vulnerability in Apache InLong, affecting versions 1.1.0 through 1.5.0. The issue arises from insecure deserialization within InLong’s runtime, enabling arbitrary code execution in the application context. The publicly stated remediatio...

9.8CVSS9.5AI score0.01409EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/02/01 12:32 p.m.15 views

GHSA-Q9P5-W2V9-6WXF Apache InLong contains Out-of-bounds Read vulnerability

Out-of-bounds Read vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0. Users are advised to upgrade to Apache InLong's latest version or cherry-pick https://github.com/apache/inlong/pull/7214 to solve it...

7.5CVSS7.4AI score0.0116EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2023/02/01 12:32 p.m.31 views

Apache InLong contains Out-of-bounds Read vulnerability

Out-of-bounds Read vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0. Users are advised to upgrade to Apache InLong's latest version or cherry-pick https://github.com/apache/inlong/pull/7214 to solve it...

7.5CVSS7.3AI score0.0116EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2023/02/01 10:15 a.m.18 views

CVE-2023-24977

Out-of-bounds Read vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0. Users are advised to upgrade to Apache InLong's latest version or cherry-pick https://github.com/apache/inlong/pull/7214...

7.5CVSS7.5AI score0.0116EPSS
Exploits0References1
NVD
NVD
added 2023/02/01 10:15 a.m.41 views

CVE-2023-24977

Out-of-bounds Read vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0. Users are advised to upgrade to Apache InLong's latest version or cherry-pick https://github.com/apache/inlong/pull/7214...

7.5CVSS7.5AI score0.0116EPSS
Exploits0References1
Prion
Prion
added 2023/02/01 10:15 a.m.16 views

Cross site scripting

Out-of-bounds Read vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0. Users are advised to upgrade to Apache InLong's latest version or cherry-pick https://github.com/apache/inlong/pull/7214...

5CVSS7.5AI score0.0116EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/02/01 9:9 a.m.38 views

CVE-2023-24977 Apache InLong: Jdbc Connection causes arbitrary file reading in InLong

Out-of-bounds Read vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0. Users are advised to upgrade to Apache InLong's latest version or cherry-pick https://github.com/apache/inlong/pull/7214...

7.7AI score0.0116EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/02/01 9:9 a.m.7 views

CVE-2023-24977 Apache InLong: Jdbc Connection causes arbitrary file reading in InLong

Out-of-bounds Read vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0. Users are advised to upgrade to Apache InLong's latest version or cherry-pick https://github.com/apache/inlong/pull/7214...

7.5AI score0.0116EPSS
Exploits0References1
CVE
CVE
added 2023/02/01 9:9 a.m.71 views

CVE-2023-24977

CVE-2023-24977 is an Out-of-bounds Read vulnerability affecting Apache InLong versions 1.1.0 through 1.5.0. The Red Hat and CVE records describe it as an information-disclosure risk via an out-of-bounds read, with a remediation path to upgrade to the latest InLong release or to cherry-pick the pa...

7.5CVSS7.5AI score0.0116EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/02/01 12:0 a.m.3 views

Apache InLong 代码问题漏洞

Apache InLong is the United States Apache Apache Foundation's one-stop massive data integration framework. Apache InLong suffers from a deserialization vulnerability that can be exploited by a remote attacker to submit a special request and execute arbitrary code in the application context...

9.8CVSS7.8AI score0.01409EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/02/01 12:0 a.m.4 views

PT-2023-19850 · Apache · Apache Inlong

Name of the Vulnerable Software and Affected Versions: Apache InLong versions 1.1.0 through 1.5.0 Description: The issue is an Out-of-bounds Read vulnerability in Apache Software Foundation Apache InLong. Users are advised to upgrade to Apache InLong's latest version or cherry-pick a specific pat...

7.5CVSS7.2AI score0.0116EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/02/01 12:0 a.m.16 views

Apache InLong 缓冲区错误漏洞

Apache InLong is the United States Apache Apache Foundation's one-stop massive data integration framework. An information disclosure vulnerability exists in Apache InLong. An attacker can exploit this vulnerability to read arbitrary files on the system...

7.5CVSS6.3AI score0.0116EPSS
Exploits0References2
Rows per page
Query Builder