Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2024-26579

Published: 08/05/2024 Updated: 08/05/2024

Vulnerability Summary

Deserialization of Untrusted Data vulnerability in Apache InLong.This issue affects Apache InLong: from 1.7.0 up to and including 1.11.0,  the attackers can bypass using malicious parameters. Users are advised to upgrade to Apache InLong's 1.12.0 or cherry-pick [1], [2] to solve it. [1] github.com/apache/inlong/pull/9694 [2]  github.com/apache/inlong/pull/9707

Mailing Lists

Full Disclosure: CVE-2024-26579: Apache Inlong JDBC Vulnerability
<!--X-Body-Begin--> <!--X-User-Header--> oss-sec mailing list archives <!--X-User-Header-End--> <!--X-TopPNI--> By Date By Thread </form> <!--X-TopPNI-End--> <!--X-MsgBody--> <!--X-Subject-Header-Begin--> CVE-2024-26579: Apache Inlong JDBC Vulnerability <!--X-Subject-Header-End--> <!--X-Head-of-Message--> From: Charles Zhang &l ...

References

CWE-502https://lists.apache.org/thread/d2hndtvh6bll4pkl91o2oqxyynhr54k3https://github.com/advisories/GHSA-fgh3-pwmp-3qw3https://nvd.nist.govhttps://seclists.org/oss-sec/2024/q2/228
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120CVE-2024-35921CVE-2024-35874brute forceCVE-2024-36080unprivilegedCVE-2024-35917IDORCVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook