Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.4
CVE-2025-2298
- EPSS 0.24%
- Veröffentlicht 21.04.2025 15:16:00
- Zuletzt bearbeitet 23.04.2025 14:08:13
An improper authorization vulnerability in Dremio Software allows authenticated users to delete arbitrary files that the system has access to, including system files and files stored in remote locations such as S3, Azure Blob Storage, and local files...
8.8
CVE-2024-23768
- EPSS 0.48%
- Veröffentlicht 22.01.2024 03:15:08
- Zuletzt bearbeitet 30.05.2025 15:15:37
Dremio before 24.3.1 allows path traversal. An authenticated user who has no privileges on certain folders (and the files and datasets in these folders) can access these folders, files, and datasets. To be successful, the user must have access to the...
1