Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2023-41314

The api /api/snapshot and /api/get_log_file would allow unauthenticated access. It could allow a DoS attack or get arbitrary files from FE node. Please upgrade to 2.0.3 to fix these issues.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.8%
CVSS Severity
CVSS v3 Score 8.2
Products affected by CVE-2023-41314
  • Apache » Doris » Version: N/A
    cpe:2.3:a:apache:doris:-
  • Apache » Doris » Version: 0.10.0
    cpe:2.3:a:apache:doris:0.10.0
  • Apache » Doris » Version: 0.11.0
    cpe:2.3:a:apache:doris:0.11.0
  • Apache » Doris » Version: 0.12.0
    cpe:2.3:a:apache:doris:0.12.0
  • Apache » Doris » Version: 0.13.0
    cpe:2.3:a:apache:doris:0.13.0
  • Apache » Doris » Version: 0.14.0
    cpe:2.3:a:apache:doris:0.14.0
  • Apache » Doris » Version: 0.15.0
    cpe:2.3:a:apache:doris:0.15.0
  • Apache » Doris » Version: 0.9.0
    cpe:2.3:a:apache:doris:0.9.0
  • Apache » Doris » Version: 1.0.0
    cpe:2.3:a:apache:doris:1.0.0
  • Apache » Doris » Version: 1.2.0
    cpe:2.3:a:apache:doris:1.2.0
  • Apache » Doris » Version: 1.2.8
    cpe:2.3:a:apache:doris:1.2.8
  • Apache » Doris » Version: 2.0.0
    cpe:2.3:a:apache:doris:2.0.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved