Tag

Apache Flink

All articles tagged with #apache flink

cybersecurity1 year ago•2 min saved

CISA Warns of Active Exploits in Apache Flink and NextGen Healthcare Flaws

A three-year-old improper access control bug in Apache Flink, CVE-2020-17519, is being actively exploited, prompting the US government to add it to the Known Exploited Vulnerabilities Catalog. Federal agencies must patch or stop using the software by June 13, and all users should ensure they are updated and check for potential compromises. The flaw allows attackers to read any file on the JobManager's local filesystem via the REST interface, and its exploitation underscores the critical need for timely software updates.

via The Register|

#apache-flink #cve-2020-17519 #cybersecurity

cybersecurity1 year ago•1 min saved

CISA Warns of Active Exploits in Apache Flink and NextGen Healthcare Flaws

CISA has added a security flaw in Apache Flink, CVE-2020-17519, to its Known Exploited Vulnerabilities catalog due to active exploitation. The flaw allows unauthorized access to sensitive information via improper access control in Flink versions 1.11.0 to 1.11.2. Federal agencies are advised to apply the latest fixes by June 13, 2024.

via The Hacker News|

#apache-flink #cisa #cve-2020-17519