CVE-2023-41314 | Apache Doris up to 2.0.3 API get_log_file improper authentication

Posted by Angelo Barbosa | Dec 17, 2023 | CVE

A vulnerability was found in Apache Doris up to 2.0.3. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /api/snapshot and /api/get_log_file of the component API. The manipulation leads to improper authentication.

This vulnerability is known as CVE-2023-41314. The attack can only be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-41314 | Apache Doris up to 2.0.3 API get_log_file improper authentication

Related Posts

CVE-2024-8561 | SourceCodester PHP CRUD 1.0 Delete Person /endpoint/delete.php person sql injection

CVE-2024-33687 | OMRON NJ Series CPU Unit/NX Series CPU Unit data authenticity (OMSR-2024-004)

CVE-2024-26787 | Linux Kernel up to 5.10.212/5.15.151/6.1.80/6.6.20/6.7.8 kernel/dma/debug.c mmci_cmd_irq memory corruption

CVE-2024-1508 | Prime Slider Plugin up to 3.13.2 on WordPress Mercury Widget cross site scripting