Unauthorized User Data Exposure via Token in Pre-2.1.4 Versions
In versions before 2.1.4, a regular user can log in and use the authorization token to request access to everyone's user flink information, like executeSQL and config. To fix this, users should upgrade to version 2.1.4.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache streampark |