Lucene search
China National Vulnerability DatabaseCNVD-2023-42958HistoryMay 28, 2023 - 12:00 a.m.
Apache InLong Security Bypass Vulnerability (CNVD-2023-42958)
2023-05-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
apache inlong
security bypass
vulnerability
version 1.4.0
version 1.6.0
unauthorized changes
EPSS
0.002
Percentile
61.1%
Apache InLong is the United States Apache (Apache) Foundation’s one-stop massive data integration framework. A security bypass vulnerability exists in Apache InLong versions 1.4.0 through 1.6.0. The vulnerability is caused due to a resource being exposed to the wrong sphere flaw. An attacker can exploit the vulnerability to change the immutable name and type of a node.
Related
osv
osv
CVE-2023-31206
2023-05-22 14:15:09
Apache InLong Exposure of Resource to Wrong Sphere vulnerability
2023-07-06 21:14:59
huntr
huntr
attack can change the immutable name and type of nodes
2023-04-17 08:43:32
cvelist
cvelist
github
github
Apache InLong Exposure of Resource to Wrong Sphere vulnerability
2023-07-06 21:14:59
prion
prion
Design/Logic Flaw
2023-05-22 14:15:00
cve
cve
CVE-2023-31206
2023-05-22 14:15:09
nvd
nvd
CVE-2023-31206
2023-05-22 14:15:09