35 matches found
CVE-2026-11618
A vulnerability was determined in DTStack Taier up to 1.4.0. The affected element is the function preHandle of the file taier-data-develop/src/main/java/com/dtstack/taier/develop/interceptor/LoginInterceptor.java of the component Source Connection Test Endpoint. Executing a manipulation can lead ...
EUVD-2026-35291
A vulnerability was determined in DTStack Taier up to 1.4.0. The affected element is the function preHandle of the file taier-data-develop/src/main/java/com/dtstack/taier/develop/interceptor/LoginInterceptor.java of the component Source Connection Test Endpoint. Executing a manipulation can lead ...
CVE-2026-11618
DTStack Taier up to v1.4.0 is affected by an improper authentication issue in the LoginInterceptor.preHandle (taier-data-develop/src/main/java/com/dtstack/taier/develop/interceptor/LoginInterceptor.java) within the Source Connection Test Endpoint. The vulnerability can be abused remotely; public ...
CVE-2026-11618 DTStack Taier Source Connection Test Endpoint LoginInterceptor.java preHandle improper authentication
A vulnerability was determined in DTStack Taier up to 1.4.0. The affected element is the function preHandle of the file taier-data-develop/src/main/java/com/dtstack/taier/develop/interceptor/LoginInterceptor.java of the component Source Connection Test Endpoint. Executing a manipulation can lead ...
PT-2026-47630
A vulnerability was determined in DTStack Taier up to 1.4.0. The affected element is the function preHandle of the file taier-data-develop/src/main/java/com/dtstack/taier/develop/interceptor/LoginInterceptor.java of the component Source Connection Test Endpoint. Executing a manipulation can lead ...
CVE-2026-9437
A vulnerability has been found in DTStack Taier 1.4.0. This affects the function Runtime.exec of the component REST API. The manipulation of the argument sqlText leads to os command injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may ...
CVE-2026-9437
A vulnerability has been found in DTStack Taier 1.4.0. This affects the function Runtime.exec of the component REST API. The manipulation of the argument sqlText leads to os command injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may ...
EUVD-2026-31645
A vulnerability has been found in DTStack Taier 1.4.0. This affects the function Runtime.exec of the component REST API. The manipulation of the argument sqlText leads to os command injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may ...
CVE-2026-9437
A vulnerability has been found in DTStack Taier 1.4.0. This affects the function Runtime.exec of the component REST API. The manipulation of the argument sqlText leads to os command injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may ...
CVE-2026-9437 DTStack Taier REST API Runtime.exec os command injection
A vulnerability has been found in DTStack Taier 1.4.0. This affects the function Runtime.exec of the component REST API. The manipulation of the argument sqlText leads to os command injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may ...
CVE-2026-9437
DTStack Taier 1.4.0 REST API Runtime.exec is affected. The vulnerability arises from manipulation of the sqlText argument, enabling OS command injection that could be exploited remotely. Exploit information is publicly disclosed; no remediation details are provided in the documents. The connected...
CVE-2026-9437 DTStack Taier REST API Runtime.exec os command injection
A vulnerability has been found in DTStack Taier 1.4.0. This affects the function Runtime.exec of the component REST API. The manipulation of the argument sqlText leads to os command injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may ...
PT-2026-43016
A vulnerability has been found in DTStack Taier 1.4.0. This affects the function Runtime.exec of the component REST API. The manipulation of the argument sqlText leads to os command injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may ...
CVE-2026-4735
Deserialization of Untrusted Data vulnerability in DTStack chunjun chunjun-core/src/main/java/com/dtstack/chunjun/util modules. This vulnerability is associated with program files GsonUtil.Java. This issue affects chunjun: before 1.16.1...
EUVD-2026-14708
Deserialization of Untrusted Data vulnerability in DTStack chunjun chunjun-core/src/main/java/com/dtstack/chunjun/util modules. This vulnerability is associated with program files GsonUtil.Java. This issue affects chunjun: before 1.16.1...
CVE-2026-4735
Deserialization of Untrusted Data vulnerability in DTStack chunjun chunjun-core/src/main/java/com/dtstack/chunjun/util modules. This vulnerability is associated with program files GsonUtil.Java. This issue affects chunjun: before 1.16.1...
CVE-2026-4735
Deserialization of Untrusted Data vulnerability in DTStack chunjun chunjun-core/src/main/java/com/dtstack/chunjun/util modules. This vulnerability is associated with program files GsonUtil.Java. This issue affects chunjun: before 1.16.1...
CVE-2026-4735
CVE-2026-4735 affects DTStack chunjun (chunjun-core/util) with a deserialization of untrusted data in GsonUtil.Java, leading to a stack overflow/DoS for versions before 1.16.1. Multiple sources corroborate the issue in chunjun up to 1.16.0, with Red Hat and PT-Security entries aligning on the vul...
CVE-2026-4735 A stack overflow and DoS vulnerability in DTStack/chunjun
Deserialization of Untrusted Data vulnerability in DTStack chunjun chunjun-core/src/main/java/com/dtstack/chunjun/util modules. This vulnerability is associated with program files GsonUtil.Java. This issue affects chunjun: before 1.16.1...
PT-2026-27313
Name of the Vulnerable Software and Affected Versions chunjun versions prior to 1.16.1 Description An unreliable data deserialization issue exists in DTStack chunjun, specifically within the chunjun-core/src/main/java/com/dtstack/chunjun/util modules. The problem is linked to the GsonUtil.Java...