4 matches found
org.apache.submarine:submarine-submitter-k8s (=0.8.0), org.apache.submarine:submarine-test-k8s (=0.8.0) potentially affected by CVE-2024-36265 via org.apache.submarine:submarine-server-core (=0.8.0)
org.apache.submarine:submarine-server-core MAVEN version =0.8.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.submarine:submarine-server-core and may be impacted: - org.apache.submarine:submarine-submitter-k8s =0.8.0 -...
CVE-2024-36265
UNSUPPORTED WHEN ASSIGNED Incorrect Authorization vulnerability in Apache Submarine Server Core. This issue affects Apache Submarine Server Core: from 0.8.0. As this project is retired, we do not plan to release a version that fixes this issue. Users are recommended to find an alternative or...
CVE-2024-36265 Apache Submarine Server Core: authorization bypass
UNSUPPORTED WHEN ASSIGNED Incorrect Authorization vulnerability in Apache Submarine Server Core. This issue affects Apache Submarine Server Core: from 0.8.0. An attacker can bypass authentication by sending specially crafted REST requests. As this project is retired, we do not plan to release a...
CVE-2024-36265 Apache Submarine Server Core: authorization bypass
UNSUPPORTED WHEN ASSIGNED Incorrect Authorization vulnerability in Apache Submarine Server Core. This issue affects Apache Submarine Server Core: from 0.8.0. An attacker can bypass authentication by sending specially crafted REST requests. As this project is retired, we do not plan to release a...