4 matches found
CVE-2024-23768
Dremio before 24.3.1 allows path traversal. An authenticated user who has no privileges on certain folders and the files and datasets in these folders can access these folders, files, and datasets. To be successful, the user must have access to the source and at least one folder in the source...
CVE-2024-23768
Dremio before 24.3.1 allows path traversal. An authenticated user who has no privileges on certain folders and the files and datasets in these folders can access these folders, files, and datasets. To be successful, the user must have access to the source and at least one folder in the source...
CVE-2024-23768
Dremio before 24.3.1 allows path traversal. An authenticated user who has no privileges on certain folders and the files and datasets in these folders can access these folders, files, and datasets. To be successful, the user must have access to the source and at least one folder in the source...
CVE-2024-23768
CVE-2024-23768 (Dremio) : Dremio before 24.3.1 suffers a path traversal flaw where an authenticated user with no privileges on certain folders plus access to the source and at least one folder can access restricted folders, files, and datasets. Affected versions are 24.0.0–24.3.0, 23.0.0–23.2.3, ...