Описание
OpenRefine is a powerful free, open source tool for working with messy data. Prior to version 3.7.5, an arbitrary file read vulnerability allows any unauthenticated user to read a file on a server. Version 3.7.5 fixes this issue.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | not-affected | 3.7.8-1 |
| esm-apps/jammy | released | 3.5.2-1ubuntu0.1~esm1 |
| esm-apps/noble | released | 3.7.7-1ubuntu0.1~esm1 |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | needed | |
| lunar | ignored | end of life, was needs-triage |
| mantic | ignored | end of life, was needs-triage |
| noble | needed |
Показывать по
10
Ссылки на источники
7.5 High
CVSS3
Связанные уязвимости
CVSS3: 7.5
nvd
больше 2 лет назад
OpenRefine is a powerful free, open source tool for working with messy data. Prior to version 3.7.5, an arbitrary file read vulnerability allows any unauthenticated user to read a file on a server. Version 3.7.5 fixes this issue.
CVSS3: 7.5
debian
больше 2 лет назад
OpenRefine is a powerful free, open source tool for working with messy ...
CVSS3: 7.5
github
больше 2 лет назад
OpenRefine vulnerable to arbitrary file read in project import with mysql jdbc url attack
7.5 High
CVSS3