CVE-2020-17519 PoC — Apache Flink 安全漏洞

Source

https://github.com/Osyanina/westone-CVE-2020-17519-scanner

Associated Vulnerability

Title:Apache Flink 安全漏洞 (CVE-2020-17519)
Description:Apache Flink是美国阿帕奇软件（Apache）基金会的一款开源的分布式流数据处理引擎。该产品主要使用Java和Scala语言编写。 Apache Flink 版本 1.11.0 至版本1.11.2 存在安全漏洞，该漏洞允许攻击者通过JobManager进程的REST接口读取JobManager本地文件系统上的任何文件。

Description

A vulnerability scanner that detects CVE-2020-17519 vulnerabilities.

Readme

# westone-CVE-2020-17519-scanner  
Apache Flink 1.11.0、1.11.1、1.11.2  
Hackers can read/write remote files via REST API  
# Installation & Usage  
git clone https://github.com/Osyanina/westone-CVE-2020-17519-scanner.git  
cd westone-CVE-2020-17519-scanner  
cmd CVE-2020-17519.exe

File Snapshot


 [4.0K]  /data/pocs/b4e1478dd2130e7cbb13b4c65b7361ae4173060e
└── [ 287]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!