VYPR

Incubator Linkis

by Apache

Source repositories

CVEs (2)

  • CVE-2025-59355Jan 19, 2026
    risk 0.00cvss epss 0.00

    A vulnerability. When org.apache.linkis.metadata.util.HiveUtils.decode() fails to perform Base64 decoding, it records the complete input parameter string in the log via logger.error(str + "decode failed", e). If the input parameter contains sensitive information such as Hive…

  • CVE-2025-29847Jan 19, 2026
    risk 0.00cvss epss 0.01

    A vulnerability in Apache Linkis. Problem Description When using the JDBC engine and da When using the JDBC engine and data source functionality, if the URL parameter configured on the frontend has undergone multiple rounds of URL encoding, it may bypass the system's checks.…