VYPR

Bitnami package

dremio

pkg:bitnami/dremio

Vulnerabilities (1)

  • CVE-2024-23768HigJan 22, 2024
    affected >= 22.0.0, < 22.2.3fixed 22.2.3

    Dremio before 24.3.1 allows path traversal. An authenticated user who has no privileges on certain folders (and the files and datasets in these folders) can access these folders, files, and datasets. To be successful, the user must have access to the source and at least one folde