CVE-2023-33247

Published: May 26, 2023

Modified: Jan 16, 2025

PUBLISHED

Description

Talend Data Catalog remote harvesting server before 8.0-20230413 contains a /upgrade endpoint that allows an unauthenticated WAR file to be deployed on the server. (A mitigation is that the remote harvesting server should be behind a firewall that only allows access to the Talend Data Catalog server.)

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://help.talend.com/r/en-US/Talend-Products-CVEs/Talend-Products-CVEs

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-33247

Description

Affected Products

References