Security Advisory

CVE-2023-33247

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-26 00:00:00

Last updated 2025-01-16 16:05:51

Assigner mitre

State PUBLISHED

Description

Talend Data Catalog remote harvesting server before 8.0-20230413 contains a /upgrade endpoint that allows an unauthenticated WAR file to be deployed on the server. (A mitigation is that the remote harvesting server should be behind a firewall that only allows access to the Talend Data Catalog server.)

← Browse all CVEs View on cve.org ↗