CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Apache: >> Doris >> 3.0.0 Security Vulnerabilities

CVE-2024-48019

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Files or Directories Accessible to External Parties vulnerability in Apache Doris. Application administrators can read arbitrary files from the server filesystem through path traversal. Users are recommended to upgrade to version 2.1.8, 3.0.3 or later, which fixes the issue.

CVSS Score

5.4

EPSS Score

0.006

Published

2025-02-04

Page 1

Vulnerabilities

Vulnerable Software

Apache: >> Doris >> 3.0.0 Security Vulnerabilities

Products

Pricing

Contact Us