Vulnerabilities (CVE)

Filtered by vendor Apache Subscribe
Filtered by product Java Chassis
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-17532 1 Apache 1 Java Chassis 2024-11-21 6.0 MEDIUM 8.8 HIGH
When handler-router component is enabled in servicecomb-java-chassis, authenticated user may inject some data and cause arbitrary code execution. The problem happens in versions between 2.0.0 ~ 2.1.3 and fixed in Apache ServiceComb-Java-Chassis 2.1.5