2 matches found
CVE-2023-31103
CVE-2023-31103 describes an exposure of resource to wrong sphere vulnerability in Apache InLong, affecting versions 1.4.0–1.6.0. The issue allows attackers to change the immutable name and type of an InLong cluster, constituting an integrity risk. Remediation: upgrade to InLong 1.7.0 or cherry‑pi...
Design/Logic Flaw
Incorrect Permission Assignment for Critical Resource Vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.2.0 through 1.6.0. The attacker can bind any cluster, even if he is not the cluster owner. Users are advised to upgrade to Apache InLong's 1.7.0...