CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS
Percentile
38.5%
Improper Neutralization of Special Elements used in an SQL Command (βSQL Injectionβ) vulnerability in Apache InLong. This issue affects Apache InLong: from 1.4.0 through 1.8.0, the attacker can create misleading or false records, making it harder to audit
and trace malicious activities.Β Users are advised to upgrade to Apache InLongβs 1.8.0 or cherry-pick [1] to solve it.
Vendor | Product | Version | CPE |
---|---|---|---|
org.apache.inlong | inlong | * | cpe:2.3:a:org.apache.inlong:inlong:*:*:*:*:*:*:*:* |