Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-45855

Disclosure Date: July 12, 2023 (last updated February 25, 2025)
SpringEL injection in the metrics source in Apache Ambari version 2.7.0 to 2.7.6 allows a malicious authenticated user to execute arbitrary code remotely. Users are recommended to upgrade to 2.7.7.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0