Apache Software Foundation Drill 1.20.3

CPE Details

Apache Software Foundation Drill 1.20.3
1.20.3
2024-07-26
11h10 +00:00
2024-07-26
11h10 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:apache:drill:1.20.3:*:*:*:*:*:*:*

Informations

Vendor

apache

Product

drill

Version

1.20.3

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-48362 2024-07-24 07h45 +00:00 XXE in the XML Format Plugin in Apache Drill version 1.19.0 and greater allows a user to read any file on a remote file system or execute commands via a malicious XML file. Users are recommended to upgrade to version 1.21.2, which fixes this issue.
9.8
Critical