CVE-2024-23953 | Apache Hive 2.2.x/3.x LlapSignerImpl Arrays.equals integrity check

Inserito da Angelo Barbosa | Gen 28, 2025 | CVE

A vulnerability, which was classified as problematic, was found in Apache Hive 2.2.x/3.x. Affected is the function Arrays.equals of the component LlapSignerImpl. The manipulation leads to improper validation of integrity check value.

This vulnerability is traded as CVE-2024-23953. The attack needs to be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23953 | Apache Hive 2.2.x/3.x LlapSignerImpl Arrays.equals integrity check

Post correlati

CVE-2023-52442 | Linux Kernel up to 5.15.144/6.1.52/6.4/6.4.15 smb2_get_msg Privilege Escalation

CVE-2024-27414 | Linux Kernel up to 6.7.8 rtnetlink rtnl_bridge_setlink state issue

CVE-2024-36140 | Siemens OZW672/OZW772 up to 5.1 cross site scripting (ssa-230445)

CVE-2024-23521 | Happyforms Plugin up to 1.25.10 on WordPress authorization