THREATOPS
THREAT OPSThreat News › [NVD] CVE-2024-36265 (CRITICAL 9.8) — ** UNSUPPORTED WHEN ASSIGNED ** Incorrect Authorization vulnerability in Apache Submarine Server Core. This issue affects Apache Submarine Server Core: from 0.8.0. An attacker can bypass authentication by sending specially crafted REST requests. As this project is retired, we

[NVD] CVE-2024-36265 (CRITICAL 9.8) — ** UNSUPPORTED WHEN ASSIGNED ** Incorrect Authorization vulnerability in Apache Submarine Server Core. This issue affects Apache Submarine Server Core: from 0.8.0. An attacker can bypass authentication by sending specially crafted REST requests. As this project is retired, we

lownvdPublished 2024-06-12

CVE-2024-36265 CVSS: 9.8 CRITICAL Published: 2024-06-12T15:15:52.247

** UNSUPPORTED WHEN ASSIGNED ** Incorrect Authorization vulnerability in Apache Submarine Server Core.

This issue affects Apache Submarine Server Core: from 0.8.0.

An attacker can bypass authentication by sending specially crafted REST requests.

As this project is retired, we do not plan to release a version that fixes this i

Indicators of compromise

Original source: https://nvd.nist.gov/vuln/detail/CVE-2024-36265