Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Groovy Sandbox escape in Eclipse Keti
Vulnerability Description
Eclipse Keti is a service that was designed to protect RESTfuls API using Attribute Based Access Control (ABAC). In Keti a sandbox escape vulnerability may lead to post-authentication Remote Code execution. This vulnerability is known to exist in the latest commit at the time of writing this CVE (commit a1c8dbe). For more details see the referenced GHSL-2021-063.
CVSS Information
N/A
Vulnerability Type
保护机制失效
Vulnerability Title
Eclipse Keti 安全漏洞
Vulnerability Description
Eclipse Keti是Eclipse基金会的一个使用基于属性的访问控制(ABAC)来保护restful API的服务。 Eclipse Keti 存在安全漏洞,该漏洞源于 Keti 中存在沙箱逃逸漏洞。利用该漏洞可能会导致认证后远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A