Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alluxio alluxio vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-38889
An issue in Alluxio v.2.9.3 and before allows an malicious user to execute arbitrary code via a crafted script to the username parameter of lluxio.util.CommonUtils.getUnixGroups(java.lang.String).
Alluxio Alluxio
668
VMScore
CVE-2022-23848
In Alluxio prior to 2.7.3, the logserver does not validate the input stream. NOTE: this is not the same as the CVE-2021-44228 Log4j vulnerability.
Alluxio Alluxio
1 Github repository
NA
CVE-2020-21485
Cross Site Scripting vulnerability in Alluxio v.1.8.1 allows a remote malicious user to executea arbitrary code via the path parameter in the browse board component.
Alluxio Alluxio 1.8.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started