{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2023-29215","assignerOrgId":"f0158376-9dc2-43b6-827c-5f631a4d8d09","state":"PUBLISHED","assignerShortName":"apache","dateReserved":"2023-04-03T14:49:09.555Z","datePublished":"2023-04-10T07:35:23.690Z","dateUpdated":"2025-02-13T16:49:02.260Z"},"containers":{"cna":{"affected":[{"defaultStatus":"unaffected","product":"Apache Linkis","vendor":"Apache Software Foundation","versions":[{"lessThanOrEqual":"1.3.1","status":"affected","version":"0","versionType":"maven"}]}],"credits":[{"lang":"en","type":"reporter","value":"sw0rd1ight"}],"descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"In Apache Linkis &lt;=1.3.1, due to the lack of effective filtering\nof parameters, an attacker configuring malicious Mysql JDBC parameters in JDBC EengineConn Module will trigger a\ndeserialization vulnerability and eventually lead to remote code execution. Therefore, the parameters in the Mysql JDBC URL should be blacklisted. Versions of Apache Linkis &lt;= 1.3.0 will be affected.<br>We recommend users upgrade the version of Linkis to version 1.3.2.\n\n<br>"}],"value":"In Apache Linkis <=1.3.1, due to the lack of effective filtering\nof parameters, an attacker configuring malicious Mysql JDBC parameters in JDBC EengineConn Module will trigger a\ndeserialization vulnerability and eventually lead to remote code execution. Therefore, the parameters in the Mysql JDBC URL should be blacklisted. Versions of Apache Linkis <= 1.3.0 will be affected.\nWe recommend users upgrade the version of Linkis to version 1.3.2."}],"metrics":[{"other":{"content":{"text":"important"},"type":"Textual description of severity"}}],"problemTypes":[{"descriptions":[{"cweId":"CWE-502","description":"CWE-502 Deserialization of Untrusted Data","lang":"en","type":"CWE"}]}],"providerMetadata":{"orgId":"f0158376-9dc2-43b6-827c-5f631a4d8d09","shortName":"apache","dateUpdated":"2023-04-10T07:40:22.237Z"},"references":[{"tags":["vendor-advisory","mailing-list"],"url":"https://lists.apache.org/thread/o682wz1ggq491ybvjwokxvcdtnzo76ls"},{"url":"http://www.openwall.com/lists/oss-security/2023/04/10/4"}],"source":{"discovery":"EXTERNAL"},"title":"Apache Linkis JDBC EngineCon  has a deserialization command execution","x_generator":{"engine":"Vulnogram 0.1.0-dev"}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T14:00:15.874Z"},"title":"CVE Program Container","references":[{"tags":["vendor-advisory","mailing-list","x_transferred"],"url":"https://lists.apache.org/thread/o682wz1ggq491ybvjwokxvcdtnzo76ls"},{"url":"http://www.openwall.com/lists/oss-security/2023/04/10/4","tags":["x_transferred"]}]},{"affected":[{"vendor":"apache","product":"linkis","cpes":["cpe:2.3:a:apache:linkis:*:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"0","status":"affected","lessThanOrEqual":"1.3.1","versionType":"custom"}]}],"metrics":[{"cvssV3_1":{"scope":"UNCHANGED","version":"3.1","baseScore":9.8,"attackVector":"NETWORK","baseSeverity":"CRITICAL","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","integrityImpact":"HIGH","userInteraction":"NONE","attackComplexity":"LOW","availabilityImpact":"HIGH","privilegesRequired":"NONE","confidentialityImpact":"HIGH"}},{"other":{"type":"ssvc","content":{"timestamp":"2024-10-22T15:26:45.501261Z","id":"CVE-2023-29215","options":[{"Exploitation":"none"},{"Automatable":"yes"},{"Technical Impact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-10-22T15:27:46.240Z"}}]}}