CVE-2024-27182

CVE-2024-27182: Apache Linkis Basic management services: Engine material management Arbitrary file deletion vulnerability

Vendor Apache Software Foundation

Product Apache Linkis Basic management services

Weakness CWE-552 · Files accessible externally

Published August 2, 2024

Last update March 27, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

Description

In Apache Linkis <= 1.5.0, Arbitrary file deletion in Basic management services on A user with an administrator account could delete any file accessible by the Linkis system user . Users are recommended to upgrade to version 1.6.0, which fixes this issue.

Key dates

Disclosure timeline

August 2, 2024 CVE published

March 27, 2025 Record updated