Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-33247

Published: 26/05/2023 Updated: 02/06/2023
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Talend

Vulnerability Summary

Talend Data Catalog remote harvesting server prior to 8.0-20230413 contains a /upgrade endpoint that allows an unauthenticated WAR file to be deployed on the server. (A mitigation is that the remote harvesting server should be behind a firewall that only allows access to the Talend Data Catalog server.)

Vulnerable Product Search on Vulmon Subscribe to Product

talend data catalog

References

NVD-CWE-noinfohttps://help.talend.com/r/en-US/Talend-Products-CVEs/Talend-Products-CVEshttps://nvd.nist.gov
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validationCVE-2024-34413CVE-2024-34089CVE-2024-33408localSQLCVE-2024-0402CVE-2024-33910CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook