5 matches found
CVE-2023-27296
Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache InLong. It could be triggered by authenticated users of InLong, you could refer to 1 to know more about this vulnerability. This issue affects Apache InLong: from 1.1.0 through 1.5.0. Users are advised to upgrade...
CVE-2023-27296
creationtimestamp| type| source ---|---|--- 2023-03-27 18:20:17+00:00| published-proof-of-concept| https://t.me/cibsecurity/60793...
CVE-2023-27296 Apache InLong: JDBC Deserialization Vulnerability in InLong
Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache InLong. It could be triggered by authenticated users of InLong, you could refer to 1 to know more about this vulnerability. This issue affects Apache InLong: from 1.1.0 through 1.5.0. Users are advised to upgrade...
CVE-2023-27296 Apache InLong: JDBC Deserialization Vulnerability in InLong
Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache InLong. It could be triggered by authenticated users of InLong, you could refer to 1 to know more about this vulnerability. This issue affects Apache InLong: from 1.1.0 through 1.5.0. Users are advised to upgrade...
CVE-2023-27296
CVE-2023-27296 affects Apache InLong versions 1.1.0–1.5.0. The root cause is unsafe deserialization of untrusted data in the JDBC flow (notably MySQLDataNode), enabling potential code execution. Impact is high (CVSS 3.1 base score 8.8; Confidentiality, Integrity, Availability all High). A fix exi...