VYPR
Unrated severityNVD Advisory· Published May 26, 2023· Updated Jan 16, 2025

CVE-2023-33247

CVE-2023-33247

Description

Talend Data Catalog remote harvesting server before 8.0-20230413 contains a /upgrade endpoint that allows an unauthenticated WAR file to be deployed on the server. (A mitigation is that the remote harvesting server should be behind a firewall that only allows access to the Talend Data Catalog server.)

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Talend/Data Catalog remote harvesting serverdescription
  • Range: < 8.0-20230413

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.