CVE-2024-27135: Apache Pulsar: Improper Input Validation in Pulsar Function Worker allows Remote Code Execution

CVE-2024-27135: Apache Pulsar: Improper Input Validation in Pulsar Function Worker allows Remote Code Execution

Open Source Security [[{„value“:“

Posted by Lari Hotari on Mar 12

Severity: high

Affected versions:

– Apache Pulsar 2.4.0 before 2.10.6
– Apache Pulsar 2.11.0 before 2.11.4
– Apache Pulsar 3.0.0 before 3.0.3
– Apache Pulsar 3.1.0 before 3.1.3
– Apache Pulsar 3.2.0 before 3.2.1

Description:

Improper input validation in the Pulsar Function Worker allows a malicious authenticated user to execute arbitrary Java
code on the Pulsar Function worker, outside of the sandboxes designated for running user-provided…
„}]] Read More 

Schreibe einen Kommentar

Deine E-Mail-Adresse wird nicht veröffentlicht. Erforderliche Felder sind mit * markiert