CVE-2024-36264

June 12, 2024, 8:15 p.m.

None
No Score

Description

** UNSUPPORTED WHEN ASSIGNED ** Improper Authentication vulnerability in Apache Submarine Commons Utils. This issue affects Apache Submarine Commons Utils: from 0.8.0. As this project is retired, we do not plan to release a version that fixes this issue. Users are recommended to find an alternative or restrict access to the instance to trusted users. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

Product(s) Impacted

Product Versions
Apache Submarine Commons Utils
  • ['0.8.0+']
Apache Submarine Commons Utils
  • ['0.8.0']
Apache Submarine Commons Utils
  • ['0.8.0 and later']

Weaknesses

Common security weaknesses mapped to this vulnerability.

References

http://www.openwall.com/lists/oss-security/2024/06/12/2
https://github.com/apache/submarine/pull/1125
https://lists.apache.org/thread/7mo0c7vbhpo8thvybl8wwvb0bccrg7r4

Tags

security@apache.org
CWE-287
2024-06-12
CVE-2024-36264

Timeline

Published: June 12, 2024, 2:15 p.m.
Last Modified: June 12, 2024, 8:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

security@apache.org

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.