Lucene search
ApacheCVELIST:CVE-2023-46227HistoryOct 19, 2023 - 9:40 a.m.
CVE-2023-46227 Apache inlong has an Arbitrary File Read Vulnerability
2023-10-1909:40:46
CWE-502
apache
www.cve.org
3
apache inlong
arbitrary file read
cve-2023-46227
deserialization
untrusted data
vulnerability
data bypass
upgrade
cherry-pick
github
EPSS
0.001
Percentile
45.7%
Deserialization of Untrusted Data Vulnerability in Apache Software Foundation Apache InLong.
This issue affects Apache InLong: from 1.4.0 through 1.8.0, the attacker can use \t to bypass.Β Users are advised to upgrade to Apache InLongβs 1.9.0 or cherry-pick [1] to solve it.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Apache InLong",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThanOrEqual": "1.8.0",
"status": "affected",
"version": "1.4.0",
"versionType": "semver"
}
]
}
]Related
vulnrichment
vulnrichment
CVE-2023-46227 Apache inlong has an Arbitrary File Read Vulnerability
2023-10-19 09:40:46
osv
osv
Apache InLong Deserialization of Untrusted Data Vulnerability
2023-10-19 12:30:23
CVE-2023-46227
2023-10-19 10:15:10
prion
prion
Deserialization of untrusted data
2023-10-19 10:15:00
veracode
veracode
Deserialization Of Untrusted Data
2023-10-23 09:42:50
nvd
nvd
CVE-2023-46227
2023-10-19 10:15:10
cnvd
cnvd
Apache InLong Deserialization Vulnerability (CNVD-2023-93323)
2023-10-23 00:00:00
github
github
Apache InLong Deserialization of Untrusted Data Vulnerability
2023-10-19 12:30:23
cve
cve
CVE-2023-46227
2023-10-19 10:15:10