GHSA-hp5w-w29m-vg63

Опубликовано: 21 июн. 2023

Источник: github

Github: Прошло ревью

CVSS3: 9.8

Описание

Apache Accumulo Improper Authentication vulnerability

Improper Authentication vulnerability in Apache Software Foundation Apache Accumulo. This issue affects Apache Accumulo: 2.1.0.

Accumulo 2.1.0 contains a defect in the user authentication process that may succeed when invalid credentials are provided. Users are advised to upgrade to 2.1.1.

Ссылки

Пакеты

Наименование

org.apache.accumulo:accumulo-shell

maven

Затронутые версииВерсия исправления

= 2.1.0

2.1.1

EPSS

Процентиль: 27%

0.00094

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2023-34340

Дефекты

CWE-287

Связанные уязвимости

CVE-2023-34340

CVSS3: 9.8

nvd

больше 2 лет назад

Improper Authentication vulnerability in Apache Software Foundation Apache Accumulo. This issue affects Apache Accumulo: 2.1.0. Accumulo 2.1.0 contains a defect in the user authentication process that may succeed when invalid credentials are provided. Users are advised to upgrade to 2.1.1.

EPSS

Процентиль: 27%

0.00094

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2023-34340

Дефекты

CWE-287