Lucene search
K

4 matches found

NVD
NVD
added 2022/09/23 8:15 a.m.41 views

CVE-2022-26112

In 0.10.0 or older versions of Apache Pinot, Pinot query endpoint and realtime ingestion layer has a vulnerability in unprotected environments due to a groovy function support. In order to avoid this, we disabled the groovy function support by default from Pinot release 0.11.0. See...

9.8CVSS0.01367EPSS
Exploits0References1
CVE
CVE
added 2022/09/23 8:5 a.m.75 views

CVE-2022-26112

CVE-2022-26112 affects Apache Pinot 0.10.0 and earlier, where Groovy function support is enabled by default in the Pinot query endpoint and realtime ingestion layer, causing a vulnerability in unprotected environments. The issue is mitigated by disabling Groovy support by default beginning with P...

9.8CVSS9.4AI score0.01367EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/09/23 8:5 a.m.50 views

CVE-2022-26112 Pinot query endpoint and the realtime ingestion layer has a vulnerability in unprotected environments due to a groovy function support

In 0.10.0 or older versions of Apache Pinot, Pinot query endpoint and realtime ingestion layer has a vulnerability in unprotected environments due to a groovy function support. In order to avoid this, we disabled the groovy function support by default from Pinot release 0.11.0. See...

9.6AI score0.01367EPSS
Exploits0References1
OSV
OSV
added 2022/09/23 8:5 a.m.29 views

CVE-2022-26112 Pinot query endpoint and the realtime ingestion layer has a vulnerability in unprotected environments due to a groovy function support

In 0.10.0 or older versions of Apache Pinot, Pinot query endpoint and realtime ingestion layer has a vulnerability in unprotected environments due to a groovy function support. In order to avoid this, we disabled the groovy function support by default from Pinot release 0.11.0. See...

9.8CVSS7.2AI score0.01367EPSS
Exploits0References3
Rows per page
Query Builder