Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-79657
HistorySep 22, 2022 - 12:00 a.m.

Apache InLong deserialization vulnerability

2022-09-2200:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
apache inlong
deserialization
vulnerability
remote code execution
apache foundation

EPSS

0.003

Percentile

70.2%

JSON

Apache InLong is the U.S. Apache (Apache) Foundation’s one-stop framework for integrating massive amounts of data. A deserialization vulnerability exists in versions prior to Apache InLong 1.3.0, which stems from insecure deserialization of serialized data received from users and can be exploited by an attacker with certain privileges to remotely execute code.

Related

cve 1
veracode 1
osv 1
prion 1
cvelist 1
nvd 1
github 1
cve
cve
CVE-2022-40955
2022-09-20 14:15:09
veracode
veracode
Remote Code Execution
2022-09-21 08:46:09
osv
osv
Apache InLong vulnerable to Deserialization of Untrusted Data
2022-09-21 00:00:46
prion
prion
Remote code execution
2022-09-20 14:15:00
cvelist
cvelist
CVE-2022-40955 Deserialization attack in Apache InLong prior to version 1.3.0 allows RCE via JDBC
2022-09-20 13:50:08
nvd
nvd
CVE-2022-40955
2022-09-20 14:15:09
github
github
Apache InLong vulnerable to Deserialization of Untrusted Data
2022-09-21 00:00:46

EPSS

0.003

Percentile

70.2%

JSON
Related for CNVD-2022-79657
cve1veracode1osv1prion1cvelist1nvd1github1