Lucene search
+L

8 matches found

redhatcve
redhatcve
added 2025/06/23 8:41 a.m.7 views

CVE-2025-32896

Summary Unauthorized users can perform Arbitrary File Read and Deserialization attack by submit job using restful api-v1. Details Unauthorized users can access /hazelcast/rest/maps/submit-job to submit job. An attacker can set extra params in mysql url to perform Arbitrary File Read and...

6.5CVSS7.3AI score0.01063EPSS
Exploits0References1
vulnersosv
vulnersosv
added 2025/06/19 12:30 p.m.8 views

org.apache.linkis:linkis-engineplugin-seatunnel (>=1.4.0 <=1.8.0), org.apache.seatunnel:connector-console-seatunnel-e2e (>=2.3.0 <=2.3.10) +6 more potentially affected by CVE-2025-32896 via org.apache.seatunnel:seatunnel-engine-common (>=2.3.0-beta <=2.3.10)

org.apache.seatunnel:seatunnel-engine-common MAVEN version =2.3.0-beta, =1.4.0, =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.3.10 Source cves: CVE-2025-32896 Source advisory: OSV:GHSA-9X53-GR7P-4QF5...

6.5CVSS7.4AI score0.01063EPSS
Exploits0
vulnersosv
vulnersosv
added 2025/06/19 12:30 p.m.7 views

org.apache.seatunnel:connector-console-seatunnel-e2e (>=2.3.0 <=2.3.10), org.apache.seatunnel:connector-seatunnel-e2e-base (>=2.3.0 <=2.3.10) +2 more potentially affected by CVE-2025-32896 via org.apache.seatunnel:seatunnel-engine-server (>=2.3.0 <=2.3.10)

org.apache.seatunnel:seatunnel-engine-server MAVEN version =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.3.10 - org.apache.seatunnel:seatunnel-engine-k8s-e2e =2.3.10 Source cves: CVE-2025-32896 Source advisory: SNYK:JAVA-ORGAPACHESEATUNNEL-10442152...

6.5CVSS7.4AI score0.01063EPSS
Exploits0
nvd
nvd
added 2025/06/19 11:15 a.m.25 views

CVE-2025-32896

Summary Unauthorized users can perform Arbitrary File Read and Deserialization attack by submit job using restful api-v1. Details Unauthorized users can access /hazelcast/rest/maps/submit-job to submit job. An attacker can set extra params in mysql url to perform Arbitrary File Read and...

6.5CVSS0.01063EPSS
Exploits0References3
cve
cve
added 2025/06/19 10:38 a.m.53 views

CVE-2025-32896

CVE-2025-32896 affects Apache SeaTunnel (

6.5CVSS7.1AI score0.01063EPSS
Exploits0References3Affected Software1
osv
osv
added 2025/06/19 10:38 a.m.6 views

CVE-2025-32896 Apache SeaTunnel: Unauthenticated insecure access

Summary Unauthorized users can perform Arbitrary File Read and Deserialization attack by submit job using restful api-v1. Details Unauthorized users can access /hazelcast/rest/maps/submit-job to submit job. An attacker can set extra params in mysql url to perform Arbitrary File Read and...

6.5CVSS7AI score0.01063EPSS
Exploits0References5
cvelist
cvelist
added 2025/06/19 10:38 a.m.24 views

CVE-2025-32896 Apache SeaTunnel: Unauthenticated insecure access

Summary Unauthorized users can perform Arbitrary File Read and Deserialization attack by submit job using restful api-v1. Details Unauthorized users can access /hazelcast/rest/maps/submit-job to submit job. An attacker can set extra params in mysql url to perform Arbitrary File Read and...

0.01063EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/06/19 10:38 a.m.4 views

CVE-2025-32896 Apache SeaTunnel: Unauthenticated insecure access

Summary Unauthorized users can perform Arbitrary File Read and Deserialization attack by submit job using restful api-v1. Details Unauthorized users can access /hazelcast/rest/maps/submit-job to submit job. An attacker can set extra params in mysql url to perform Arbitrary File Read and...

7.3AI score0.01063EPSS
Exploits0References2
Rows per page
Query Builder