Lucene search
Veracode Vulnerability DatabaseVERACODE:44951HistoryJan 04, 2024 - 11:41 a.m.
Remote Code Execution
2024-01-0411:41:04
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
remote code execution
apache inlong
manager-pojo
validation
updateauditsource
software security
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7.3
Confidence
High
EPSS
0.002
Percentile
60.5%
org.apache.inlong:manager-pojo is vulnerable to Remote Code Execution. The vulnerability is caused due to a lack of validation within the updateAuditSource class. An attacker can inject code which would lead to RCE.
Related
github
github
Apache InLong Manager Remote Code Execution vulnerability
2024-01-03 12:30:21
nvd
nvd
CVE-2023-51784
2024-01-03 10:15:09
prion
prion
Code injection
2024-01-03 10:15:00
osv
osv
Apache InLong Manager Remote Code Execution vulnerability
2024-01-03 12:30:21
cve
cve
CVE-2023-51784
2024-01-03 10:15:09
cvelist
cvelist
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7.3
Confidence
High
EPSS
0.002
Percentile
60.5%
Related for VERACODE:44951