CVE-2024-27181: Apache Linkis vulnerable to privilege escalation
(updated )
In Apache Linkis <= 1.5.0, Privilege Escalation in Basic management services where the attacking user is a trusted account allows access to Linkis’s Token information. Users are advised to upgrade to version 1.6.0, which fixes this issue.
References
Detect and mitigate CVE-2024-27181 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →