SpringEL injection in the metrics... CVE-2022-45855

- AV AC AU C I A
发布: 2023-07-12
修订: 2024-11-21

SpringEL injection in the metrics source in Apache Ambari version 2.7.0 to 2.7.6 allows a malicious authenticated user to execute arbitrary code remotely. Users are recommended to upgrade to 2.7.7.

0%
暂无可用Exp或PoC
当前有1条受影响产品信息