Lucene search
ApacheVULNRICHMENT:CVE-2023-46227HistoryOct 19, 2023 - 9:40 a.m.
CVE-2023-46227 Apache inlong has an Arbitrary File Read Vulnerability
2023-10-1909:40:46
CWE-502
apache
github.com
1
cve-2023-46227; apache inlong; arbitrary file read; deserialization vulnerability; untrusted data; apache software foundation; upgrade; cherry-pick; github; pull request
AI Score
7.1
Confidence
High
EPSS
0.001
Percentile
45.7%
SSVC
Exploitation
none
Automatable
yes
Technical Impact
partial
Deserialization of Untrusted Data Vulnerability in Apache Software Foundation Apache InLong.
This issue affects Apache InLong: from 1.4.0 through 1.8.0, the attacker can use \t to bypass.Β Users are advised to upgrade to Apache InLongβs 1.9.0 or cherry-pick [1] to solve it.
Related
osv
osv
Apache InLong Deserialization of Untrusted Data Vulnerability
2023-10-19 12:30:23
CVE-2023-46227
2023-10-19 10:15:10
cvelist
cvelist
CVE-2023-46227 Apache inlong has an Arbitrary File Read Vulnerability
2023-10-19 09:40:46
veracode
veracode
Deserialization Of Untrusted Data
2023-10-23 09:42:50
nvd
nvd
CVE-2023-46227
2023-10-19 10:15:10
prion
prion
Deserialization of untrusted data
2023-10-19 10:15:00
cnvd
cnvd
Apache InLong Deserialization Vulnerability (CNVD-2023-93323)
2023-10-23 00:00:00
github
github
Apache InLong Deserialization of Untrusted Data Vulnerability
2023-10-19 12:30:23
cve
cve
CVE-2023-46227
2023-10-19 10:15:10
AI Score
7.1
Confidence
High
EPSS
0.001
Percentile
45.7%
SSVC
Exploitation
none
Automatable
yes
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-46227