Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2023-31453
HistoryMay 22, 2023 - 2:15 p.m.

CVE-2023-31453

2023-05-2214:15:09
Google
osv.dev
4
apache inlong
incorrect permission assignment
critical resource vulnerability
cve-2023-31453
apache software foundation
upgrade
user subscriptions
attacker

AI Score

7.1

Confidence

High

EPSS

0.002

Percentile

61.1%

JSON

Incorrect Permission Assignment for Critical Resource Vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.2.0 through 1.6.0. TheΒ attacker can delete others’ subscriptions, even if they are not the owner
of the deleted subscription.Β Users are advised to upgrade to Apache InLong’s 1.7.0 or cherry-pick [1] to solve it.

[1]

https://github.com/apache/inlong/pull/7949 https://github.com/apache/inlong/pull/7949

Related

prion 1
huntr 1
cnvd 1
veracode 1
nvd 1
cvelist 1
osv 1
github 1
cve 1
prion
prion
Design/Logic Flaw
2023-05-22 14:15:00
huntr
huntr
IDOR make users can delete others' subscription
2023-04-17 10:55:11
cnvd
cnvd
Apache InLong Authorization Issues Vulnerability
2023-05-28 00:00:00
veracode
veracode
Incorrect Permission Assignment
2023-05-23 04:01:10
nvd
nvd
CVE-2023-31453
2023-05-22 14:15:09
cvelist
cvelist
CVE-2023-31453 Apache InLong: IDOR make users can delete others' subscription
2023-05-22 13:25:47
osv
osv
Apache InLong Incorrect Permission Assignment for Critical Resource Vulnerability
2023-07-06 21:14:59
github
github
Apache InLong Incorrect Permission Assignment for Critical Resource Vulnerability
2023-07-06 21:14:59
cve
cve
CVE-2023-31453
2023-05-22 14:15:09

AI Score

7.1

Confidence

High

EPSS

0.002

Percentile

61.1%

JSON
Related for OSV:CVE-2023-31453
prion1huntr1cnvd1veracode1nvd1cvelist1osv1github1cve1