Lucene search
K

226 matches found

Vulnrichment
Vulnrichment
added 2022/10/26 12:0 a.m.7 views

CVE-2022-39944 The Apache Linkis JDBC EngineConn module has a RCE Vulnerability

In Apache Linkis =1.2.0 when used with the MySQL Connector/J, a deserialization vulnerability with possible remote code execution impact exists when an attacker has write access to a database and configures a JDBC EC with a MySQL data source and malicious parameters. Therefore, the parameters in...

8.9AI score0.01747EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/10/26 12:0 a.m.9 views

PT-2022-5283 · Apache +1 · Apache Linkis +1

Name of the Vulnerable Software and Affected Versions: Apache Linkis versions 1.2.0 and earlier Description: A deserialization vulnerability exists in Apache Linkis when used with the MySQL Connector/J, potentially allowing remote code execution if an attacker has write access to a database and...

9CVSS8.8AI score0.01747EPSS
Exploits0References7
CNNVD
CNNVD
added 2022/10/26 12:0 a.m.5 views

Apache Linkis 代码问题漏洞

Apache Linkis is a middleware product from the Apache Foundation that establishes an effective connection between upper-tier applications and the underlying data engine. A code issue vulnerability exists in Apache Linkis version 1.2.0 and prior versions, which stems from a deserialization...

8.8CVSS8.4AI score0.01747EPSS
Exploits0References2
CVE
CVE
added 2022/10/26 12:0 a.m.89 views

CVE-2022-39944

Summary: CVE-2022-39944 affects Apache Linkis <= 1.2.0 when used with MySQL Connector/J, enabling a deserialization vulnerability that can lead to remote code execution if an attacker has write access to a database and provides malicious parameters in a JDBC EC with a MySQL data source. The is...

8.8CVSS8.9AI score0.01747EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/10/26 12:0 a.m.33 views

CVE-2022-39944 The Apache Linkis JDBC EngineConn module has a RCE Vulnerability

In Apache Linkis =1.2.0 when used with the MySQL Connector/J, a deserialization vulnerability with possible remote code execution impact exists when an attacker has write access to a database and configures a JDBC EC with a MySQL data source and malicious parameters. Therefore, the parameters in...

9.1AI score0.01747EPSS
Exploits0References1
OSV
OSV
added 2022/10/26 12:0 a.m.15 views

CVE-2022-39944 The Apache Linkis JDBC EngineConn module has a RCE Vulnerability

In Apache Linkis =1.2.0 when used with the MySQL Connector/J, a deserialization vulnerability with possible remote code execution impact exists when an attacker has write access to a database and configures a JDBC EC with a MySQL data source and malicious parameters. Therefore, the parameters in...

8.8CVSS7.8AI score0.01747EPSS
Exploits0References3
Rows per page
Query Builder