Authorization Bypass Through User-Controlled Key vulnerability in Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.8.0,  some sensitive params checks will be bypassed, like "autoDeserizalize","allowLoadLocalInfile".... .   Users are advised to upgrade to Apache InLong's 1.9.0 or cherry-pick [1] to solve it. [1]  https://github.com/apache/inlong/pull/8604
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: apache

Published: 2023-10-16T08:07:42.681Z

Updated: 2024-09-16T18:25:25.535Z

Reserved: 2023-09-21T03:46:14.070Z

Link: CVE-2023-43668

cve-icon Vulnrichment

Updated: 2024-08-02T19:44:43.810Z

cve-icon NVD

Status : Modified

Published: 2023-10-16T09:15:10.573

Modified: 2023-11-14T10:15:30.143

Link: CVE-2023-43668

cve-icon Redhat

No data.