Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2023-38889

Disclosure Date: August 15, 2023 (last updated February 25, 2025)
An issue in Alluxio v.2.9.3 and before allows an attacker to execute arbitrary code via a crafted script to the username parameter of lluxio.util.CommonUtils.getUnixGroups(java.lang.String).
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0