VYPR

Maven package

org.apache.seatunnel/seatunnel-engine-server

pkg:maven/org.apache.seatunnel/seatunnel-engine-server

Vulnerabilities (1)

  • CVE-2025-32896Jun 19, 2025
    affected < 2.3.11fixed 2.3.11

    # Summary Unauthorized users can perform Arbitrary File Read and Deserialization attack by submit job using restful api-v1. # Details Unauthorized users can access `/hazelcast/rest/maps/submit-job` to submit job. An attacker can set extra params in mysql url to perform Arbitrar