← All advisories

Moderate severityNVD Advisory· Published Nov 18, 2019· Updated Aug 4, 2024

CVE-2019-10070

CVE-2019-10070

Description

Apache Atlas versions 0.8.3 and 1.1.0 were found vulnerable to Stored Cross-Site Scripting in the search functionality

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

Package	Affected versions	Patched versions
org.apache.atlas:apache-atlasMaven	< 0.8.4	0.8.4
org.apache.atlas:apache-atlasMaven	>= 1.0.0, < 1.2.0	1.2.0

Affected products

2

ghsa-coords
pkg:maven/org.apache.atlas/apache-atlas
Range: < 0.8.4
Apache/Atlascpe-rescue
Range: 0.8.3

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

4

github.com/advisories/GHSA-v62j-fcxq-j239ghsaADVISORY
nvd.nist.gov/vuln/detail/CVE-2019-10070ghsaADVISORY
lists.apache.org/thread.html/cc21437c4c5053a13e13332d614d5172f39da03491fe17ae260be221%40%3Cdev.atlas.apache.org%3Emitremailing-listx_refsource_MLIST
lists.apache.org/thread.html/cc21437c4c5053a13e13332d614d5172f39da03491fe17ae260be221@%3Cdev.atlas.apache.org%3EghsaWEB

News mentions

0

No linked articles in our index yet.