4 matches found
cloud.piranha.extension:piranha-extension-hazelcast (>=23.6.0 <=23.11.0), com.bucket4j:bucket4j-hazelcast (>=8.5.0 <=8.9.0) +508 more potentially affected by CVE-2023-45860 via com.hazelcast:hazelcast (>=5.3.0 <=5.3.4)
com.hazelcast:hazelcast MAVEN version =5.3.0, =23.6.0, =8.5.0, =8.5.0, =1.1.15, =3.1.7, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.3.4 and more Source cves: CVE-2023-45860 Source advisory: OSV:GHSA-8H4X-XVJP-VF99...
cloud.piranha.extension:piranha-extension-hazelcast (>=22.12.0 <=23.4.0), cloud.piranha:debug (>=22.12.0 <=23.1.0) +210 more potentially affected by CVE-2023-45860 via com.hazelcast:hazelcast (>=5.2.0 <=5.2.4)
com.hazelcast:hazelcast MAVEN version =5.2.0, =22.12.0, =22.12.0, =23.1.0 - cn.vertxup:aeon-ambient =0.9.0 - cn.vertxup:aeon-aurora =0.9.0 - cn.vertxup:aeon-code =0.9.0 - cn.vertxup:aeon-cosmos =0.9.0 - cn.vertxup:aeon-ecology =0.9.0 - cn.vertxup:aeon-edge =0.9.0 - cn.vertxup:aeon-eternal =0.9.0 ...
CVE-2023-45860
Hazelcast Platform up to 5.3.4 is affected by a permission-checking flaw in the SQL mapping for the CSV File Source connector, potentially enabling unauthorized clients to read files on a member’s filesystem. Root cause: inadequate access checks. Impact: data exposure of local files. Remediation:...
CVE-2023-45860
In Hazelcast Platform through 5.3.4, a security issue exists within the SQL mapping for the CSV File Source connector. This issue arises from inadequate permission checking, which could enable unauthorized clients to access data from files stored on a member's filesystem...