Описание
Mysql security vulnerability in Apache SeaTunnel.
Attackers can read files on the MySQL server by modifying the information in the MySQL URL
allowLoadLocalInfile=true&allowUrlInLocalInfile=true&allowLoadLocalInfileInPath=/&maxAllowedPacket=655360 This issue affects Apache SeaTunnel: 1.0.0.
Users are recommended to upgrade to version [1.0.1], which fixes the issue.
Ссылки
- Mailing ListVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:apache:seatunnel:1.0.0:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00305
Низкий
7.5 High
CVSS3
Дефекты
CWE-552
Связанные уязвимости
EPSS
Процентиль: 53%
0.00305
Низкий
7.5 High
CVSS3
Дефекты
CWE-552