GHSA-x3v6-f5fr-4wwv

Опубликовано: 13 фев. 2025

Источник: github

Github: Прошло ревью

CVSS4: 5.3

CVSS3: 7.1

Описание

Apache Atlas: An authenticated user can perform XSS and potentially impersonate another user

An authenticated user can perform XSS and potentially impersonate another user.

This issue affects Apache Atlas versions 2.3.0 and earlier.

Users are recommended to upgrade to version 2.4.0, which fixes the issue.

Ссылки

Пакеты

Наименование

org.apache.atlas:apache-atlas

maven

Затронутые версииВерсия исправления

>= 2.0.0, < 2.4.0

2.4.0

EPSS

Процентиль: 43%

0.00209

Низкий

5.3 Medium

CVSS4

7.1 High

CVSS3

CVE ID

CVE-2024-46910

Дефекты

CWE-80

Связанные уязвимости

CVE-2024-46910

CVSS3: 7.1

nvd

12 месяцев назад

An authenticated user can perform XSS and potentially impersonate another user. This issue affects Apache Atlas versions 2.3.0 and earlier. Users are recommended to upgrade to version 2.4.0, which fixes the issue.

EPSS

Процентиль: 43%

0.00209

Низкий

5.3 Medium

CVSS4

7.1 High

CVSS3

CVE ID

CVE-2024-46910

Дефекты

CWE-80