High severityNVD Advisory· Published Aug 2, 2024· Updated Mar 27, 2025
Apache Linkis Basic management services: Engine material management Arbitrary file deletion vulnerability
CVE-2024-27182
Description
In Apache Linkis <= 1.5.0,
Arbitrary file deletion in Basic management services on
A user with an administrator account could delete any file accessible by the Linkis system user
. Users are recommended to upgrade to version 1.6.0, which fixes this issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.apache.linkis:linkisMaven | < 1.6.0 | 1.6.0 |
Affected products
2- Apache Software Foundation/Apache Linkis Basic management servicesv5Range: 1.3.2
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-j6vx-r77h-44wcghsaADVISORY
- lists.apache.org/thread/2of1p433h8rbq2bx525rtftnk19oz38hghsavendor-advisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2024-27182ghsaADVISORY
- www.openwall.com/lists/oss-security/2024/08/02/4ghsaWEB
News mentions
0No linked articles in our index yet.