SB2023041024 - Multiple vulnerabilities in Apache Linkis
Published: April 10, 2023
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 vulnerabilities.
1) Information disclosure (CVE-ID: CVE-2022-44644)
CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows a remote user to read contents of arbitrary files.
The vulnerability exists due to the MySQL Connector/J in the data source module allows to read local files by adding the "allowLoadLocalInfile" to true in the JDBC parameter. A remote user can view contents of arbitrary files on the system.
2) Deserialization of Untrusted Data (CVE-ID: CVE-2022-44645)
CWE-ID: CWE-502 - Deserialization of Untrusted Data
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows a remote user to execute arbitrary code on the target system.
The vulnerability exists due to insecure input validation when processing serialized data in when used with the MySQL Connector/J. A remote user with write access to the database and ability to configure a MySQL data source and malicious parameters can execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
Remediation
Install update from vendor's website.