Products
Apache HugeGraph-Server
- 1.0.0 - 1.3.0 in Java8 & Java11
Apache HugeGraph-Server
- 1.0.0 - 1.3.0
Source
security@apache.org
Tags
CVE-2024-27348 details
Published : April 22, 2024, 2:15 p.m.
Last Modified : April 22, 2024, 7:24 p.m.
Last Modified : April 22, 2024, 7:24 p.m.
Description
RCE-Remote Command Execution vulnerability in Apache HugeGraph-Server.This issue affects Apache HugeGraph-Server: from 1.0.0 before 1.3.0 in Java8 & Java11 Users are recommended to upgrade to version 1.3.0 with Java11 & enable the Auth system, which fixes the issue.
CVSS Score
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|
References
URL | Source |
---|---|
https://hugegraph.apache.org/docs/config/config-authentication/#configure-user-authentication | security@apache.org |
https://lists.apache.org/thread/nx6g6htyhpgtzsocybm242781o8w5kq9 | security@apache.org |
This website uses the NVD API, but is not approved or certified by it.