Описание
Apache Flume versions 1.4.0 through 1.10.0 are vulnerable to a remote code execution (RCE) attack when a configuration uses a JMS Source with a JNDI LDAP data source URI when an attacker has control of the target LDAP server. This issue is fixed by limiting JNDI to allow only the use of the java protocol or no protocol.
Ссылки
- Issue TrackingVendor Advisory
- Mailing ListPatchVendor Advisory
- Issue TrackingVendor Advisory
- Mailing ListPatchVendor Advisory
Уязвимые конфигурации
EPSS
9.8 Critical
CVSS3
Дефекты
Связанные уязвимости
Apache Flume versions 1.4.0 through 1.10.0 are vulnerable to a remote code execution (RCE) attack when a configuration uses a JMS Source with a JNDI LDAP data source URI when an attacker has control of the target LDAP server. This issue is fixed by limiting JNDI to allow only the use of the java protocol or no protocol.
Уязвимость компонента JMSMessageConsumer программного средства для передачи больших объемов потоковых данных Apache Flume, позволяющая нарушителю выполнить произвольный код
EPSS
9.8 Critical
CVSS3