CVE-2024-23953 | Apache Hive 2.2.x/3.x LlapSignerImpl Arrays.equals integrity check
CVE-2024-23953 | Apache Hive 2.2.x/3.x LlapSignerImpl Arrays.equals integrity check
A vulnerability, which was classified as problematic, was found in Apache Hive 2.2.x/3.x. Affected is the functionArrays.equals
of the component LlapSignerImpl. The manipulation leads to improper validation of integrity check value.
This vulnerability is traded as CVE-2024-23953. The attack needs to be done within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
Son Yazılar
- CVE-2024-10930 | Carrier Block Load prior 4.2 uncontrolled search path (icsa-25-051-03)
- CVE-2025-25968 | DDSN Interactive cm3 Acora CMS 10.1.1 file access control
- CVE-2023-51333 | PHPJabbers Cinema Booking System 1.0 Languages Section Label csv injection
- CVE-2024-46933 | Atos Eviden BullSequana XH2140 BMC prior 101.05.0014 denial of service
- CVE-2023-51334 | PHPJabbers Cinema Booking System 1.0 Forgot Password denial of service
- CVE-2024-55457 | MasterSAM Star Gate downloadService file path traversal
- CVE-2023-51335 | PHPJabbers Cinema Booking System 1.0 title/name cross site scripting
- CVE-2025-25973 | Ppress 0.0.9 Related Recommendations article.category article.title/article.category/article.tags cross site scripting
- CVE-2025-27091 | Cisco OpenH264 up to 2.5.x Decoding heap-based overflow (GHSA-m99q-5j7x-7m9x)
- CVE-2024-54959 | Nagios XI 2024R1.2.2 Favorites cross-site request forgery