Lucene search
+L

4 matches found

NVD
NVD
added 2023/04/10 8:15 a.m.39 views

CVE-2023-27602

In Apache Linkis =1.3.1, The PublicService module uploads files without restrictions on the path to the uploaded files, and file types. We recommend users upgrade the version of Linkis to version 1.3.2. For versions =1.3.1, we suggest turning on the file path check switch in linkis.properties...

9.8CVSS9.4AI score0.01996EPSS
Exploits0References4
CVE
CVE
added 2023/04/10 7:36 a.m.65 views

CVE-2023-27602

Summary: CVE-2023-27602 affects Apache Linkis <= 1.3.1, where the PublicService module allows uploading files without restrictions on path or type. This may enable arbitrary file uploads and, per CNVD, could lead to remote code execution. Impact (as stated): Potential total impact via arbitrar...

9.8CVSS9.5AI score0.01996EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2023/04/10 7:36 a.m.19 views

CVE-2023-27602 Apache Linkis publicsercice module unrestricted upload of file

In Apache Linkis =1.3.1, The PublicService module uploads files without restrictions on the path to the uploaded files, and file types. We recommend users upgrade the version of Linkis to version 1.3.2. For versions =1.3.1, we suggest turning on the file path check switch in linkis.properties...

9.8CVSS7.2AI score0.01996EPSS
Exploits0References6
Cvelist
Cvelist
added 2023/04/10 7:36 a.m.36 views

CVE-2023-27602 Apache Linkis publicsercice module unrestricted upload of file

In Apache Linkis =1.3.1, The PublicService module uploads files without restrictions on the path to the uploaded files, and file types. We recommend users upgrade the version of Linkis to version 1.3.2. For versions =1.3.1, we suggest turning on the file path check switch in linkis.properties...

9.7AI score0.01996EPSS
Exploits0References4
Rows per page
Query Builder