Security Advisory

CVE-2024-48019

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-02-04 18:19:52

Last updated 2025-02-07 21:20:37

Assigner apache

State PUBLISHED

Description

Improper Limitation of a Pathname to a Restricted Directory (Path Traversal), Files or Directories Accessible to External Parties vulnerability in Apache Doris. Application administrators can read arbitrary files from the server filesystem through path traversal. Users are recommended to upgrade to version 2.1.8, 3.0.3 or later, which fixes the issue.

← Browse all CVEs View on cve.org ↗