-
Notifications
You must be signed in to change notification settings - Fork 3k
Security: datahub-project/datahub
Security Navigation
Security Advisories
View known security vulnerabilities and report new vulnerabilities privately to maintainers.
-
Privilege Escalation to system user through user signupGHSA-mcrw-j7x9-x556 published
Sep 20, 2024 by jjoyce0510High -
Log4j vulnerability in kafka-setup and datahub-ingestion imagesGHSA-wxq2-3f82-2xjj published
Aug 14, 2023 by david-leifkerModerate -
Pyspark vulnerability in datahub-ingestion imageGHSA-2q7w-7r2r-572w published
Aug 14, 2023 by david-leifkerHigh -
Jackson-databind VulnerabilityGHSA-3p2c-f3j7-cxjm published
Aug 14, 2023 by david-leifkerModerate -
Failure to Invalidate Session on Logout (`GHSL-2022-083`)GHSA-3974-hxjh-m3jj published
Jan 6, 2023 by david-leifkerModerate -
Login fail open on JAAS misconfiguration (`GHSL-2022-081`)GHSA-7wc6-p6c4-522c published
Jan 6, 2023 by david-leifkerModerate -
JSON Injection (`GHSL-2022-080`)GHSA-6rpf-5cfg-h8f3 published
Jan 6, 2023 by david-leifkerHigh -
System account impersonation (`GHSL-2022-079`)GHSA-qgp2-qr66-j8r8 published
Jan 6, 2023 by david-leifkerHigh -
SSRF/XSS (`GHSL-2022-076`)GHSA-5w2h-q83m-65xg published
Jan 6, 2023 by david-leifkerHigh -
Deserialization of untrusted data (`GHSL-2022-086`)GHSA-hrwp-2q5c-86wv published
Jan 6, 2023 by david-leifkerHigh