Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:41 a.m.26 views

CVE-2022-26112

In 0.10.0 or older versions of Apache Pinot, Pinot query endpoint and realtime ingestion layer has a vulnerability in unprotected environments due to a groovy function support. In order to avoid this, we disabled the groovy function support by default from Pinot release 0.11.0. See...

9.8CVSS6.8AI score0.01367EPSS
Exploits0References1
OSV
OSV
added 2022/09/25 12:0 a.m.38 views

GHSA-QJ9P-JVMW-82RH Apache Pinot has Groovy Function support enabled by default

Pinot allows you to run any function using Apache Groovy scripts. In versions prior to 0.10.0, Pinot query endpoint and realtime ingestion layer has a vulnerability in unprotected environments due to groovy function support being enabled by default. This issue has been fixed by making function...

9.8CVSS9.4AI score0.01367EPSS
Exploits0References5
Cvelist
Cvelist
added 2022/09/23 8:5 a.m.50 views

CVE-2022-26112 Pinot query endpoint and the realtime ingestion layer has a vulnerability in unprotected environments due to a groovy function support

In 0.10.0 or older versions of Apache Pinot, Pinot query endpoint and realtime ingestion layer has a vulnerability in unprotected environments due to a groovy function support. In order to avoid this, we disabled the groovy function support by default from Pinot release 0.11.0. See...

9.6AI score0.01367EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/09/23 8:5 a.m.6 views

CVE-2022-26112 Pinot query endpoint and the realtime ingestion layer has a vulnerability in unprotected environments due to a groovy function support

In 0.10.0 or older versions of Apache Pinot, Pinot query endpoint and realtime ingestion layer has a vulnerability in unprotected environments due to a groovy function support. In order to avoid this, we disabled the groovy function support by default from Pinot release 0.11.0. See...

6.7AI score0.01367EPSS
Exploits0References1
Rows per page
Query Builder