AI Score
Confidence
High
EPSS
Percentile
34.8%
SSVC
Exploitation
none
Automatable
yes
Technical Impact
partial
Mysql security vulnerability in Apache SeaTunnel.
Attackers can read files on the MySQL server by modifying the information in the MySQL URL
allowLoadLocalInfile=true&allowUrlInLocalInfile=true&allowLoadLocalInfileInPath=/&maxAllowedPacket=655360
This issue affects Apache SeaTunnel: 1.0.0.
Users are recommended to upgrade to version [1.0.1], which fixes the issue.
[
{
"cpes": [
"cpe:2.3:a:apache_software_foundation:apache_seatunnel_web:*:*:*:*:*:*:*:*"
],
"vendor": "apache_software_foundation",
"product": "apache_seatunnel_web",
"versions": [
{
"status": "affected",
"version": "1.0.0"
}
],
"defaultStatus": "unknown"
}
]