Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Tigergraph Enterprise 3.7.0. The GSQL query language provides users with the ability to write data to files on a remote TigerGraph server. The locations that a query is allowed to write to are configurable via the GSQL.FileOutputPolicy configuration setting. GSQL queries that contain UDFs can bypass this configuration setting and, as a consequence, can write to any file location to which the administrative user has access.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
TigerGraph 安全漏洞
Vulnerability Description
TigerGraph是TigerGraph社区的一款全球最快、最具扩展性的图分析平台。实现实时大数据图应用。 Tigergraph Enterprise 3.7.0版本存在安全漏洞。攻击者利用该漏洞可以写入管理用户有权访问的任何文件位置。
CVSS Information
N/A
Vulnerability Type
N/A