Lucene search
Veracode Vulnerability DatabaseVERACODE:44953HistoryJan 04, 2024 - 12:28 p.m.
Arbitrary File Read
2024-01-0412:28:08
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
org.apache.inlong
manager-pojo
arbitrary file read
validation
deserializing
untrusted data
mysql driver
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.1
Confidence
High
EPSS
0.003
Percentile
70.7%
org.apache.inlong: manager-pojo is vulnerable to Arbitrary File Read. The vulnerability is caused due to lack of validation performed while deserializing untrusted data. An attacker can perform an arbitrary file read using mysql driver.
Related
osv
osv
Apache InLong Manager Arbitrary File Read Vulnerability
2024-01-03 12:30:21
prion
prion
Deserialization of untrusted data
2024-01-03 10:15:00
vulnrichment
vulnrichment
cvelist
cvelist
cnvd
cnvd
Apache InLong Code Issue Vulnerability (CNVD-2024-08088)
2024-01-09 00:00:00
github
github
Apache InLong Manager Arbitrary File Read Vulnerability
2024-01-03 12:30:21
nvd
nvd
CVE-2023-51785
2024-01-03 10:15:09
cve
cve
CVE-2023-51785
2024-01-03 10:15:09
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.1
Confidence
High
EPSS
0.003
Percentile
70.7%
Related for VERACODE:44953