Kylin's cube designer function has a command injection vulnerability when overwriting system parameters in the configuration overwrites menu. RCE can be implemented by closing the single quotation marks around the parameter value of “-- conf=” to inject any operating system command into the command line parameters. This vulnerability affects Kylin 2 version 2.6.5 and earlier, Kylin 3 version 3.1.2 and earlier, and Kylin 4 version 4.0.1 and earlier.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HApache Kylin
APPApache2.0.0 – 2.6.6 (bez)3.0.0 – 3.1.24.0.0 – 4.0.1
Related vulnerabilities
Session Fixation w Apache Kylin — przejęcie sesji użytkownika
Diagnosis Controller miss parameter validation, so user may attacked by command injection via HTTP Request.
Apache kylin checks the legitimacy of the project before executing some commands with the project name passed ...
Kylin can receive user input and load any class through Class.forName(...). This issue affects Apache Kylin 2 ...
Similar to CVE-2020-1956, Kylin has one more restful API which concatenates the API inputs into OS commands an...