CVE-2023-34189 | THREATINT

Description

Exposure of Resource to Wrong Sphere Vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.7.0. The attacker could use general users to delete and update the process, which only the admin can operate occurrences. Users are advised to upgrade to Apache InLong's 1.8.0 or cherry-pick https://github.com/apache/inlong/pull/8109 to solve it.

PUBLISHED Reserved 2023-05-30 | Published 2023-07-25 | Updated 2025-02-13 | Assigner apache

Problem types

CWE-668 Exposure of Resource to Wrong Sphere

Product status

Default status

unaffected

1.4.0 (semver)

affected

References

lists.apache.org/thread/smxqyx43hxjvzv4w71n2n3rfho9p378s vendor-advisory

www.openwall.com/lists/oss-security/2023/07/25/2

cve.org (CVE-2023-34189)

nvd.nist.gov (CVE-2023-34189)

Download JSON