Количество 2
Количество 2
CVE-2023-27602
In Apache Linkis <=1.3.1, The PublicService module uploads files without restrictions on the path to the uploaded files, and file types. We recommend users upgrade the version of Linkis to version 1.3.2. For versions <=1.3.1, we suggest turning on the file path check switch in linkis.properties `wds.linkis.workspace.filesystem.owner.check=true` `wds.linkis.workspace.filesystem.path.check=true`
GHSA-x84r-jrqm-3hj8
Apache Linkis Unrestricted File Upload vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-27602 In Apache Linkis <=1.3.1, The PublicService module uploads files without restrictions on the path to the uploaded files, and file types. We recommend users upgrade the version of Linkis to version 1.3.2. For versions <=1.3.1, we suggest turning on the file path check switch in linkis.properties `wds.linkis.workspace.filesystem.owner.check=true` `wds.linkis.workspace.filesystem.path.check=true` | CVSS3: 9.8 | 1% Низкий | почти 3 года назад |
| GHSA-x84r-jrqm-3hj8 Apache Linkis Unrestricted File Upload vulnerability | CVSS3: 9.8 | 1% Низкий | больше 2 лет назад |
Уязвимостей на страницу