Known Vulnerabilities for Drill by Apache
Listed below are 8 of the newest known vulnerabilities associated with "Drill" by "Apache".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-36090 | When reading a specially crafted ZIP archive, Compress can be made to allocate large amounts of memory that finally leads to ... | 7.5 - HIGH | 2021-07-13 | 2023-11-07 |
| CVE-2020-13956 | Apache HttpClient versions prior to version 4.5.13 and 5.0.3 can misinterpret malformed authority component in request URIs p... | 5.3 - MEDIUM | 2020-12-02 | 2023-11-07 |
| CVE-2019-14439 | A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.x before 2.9.9.2. This occurs when Default Typing i... | 7.5 - HIGH | 2019-07-30 | 2023-11-07 |
| CVE-2019-10241 | In Eclipse Jetty version 9.2.26 and older, 9.3.25 and older, and 9.4.15 and older, the server is vulnerable to XSS conditions... | 6.1 - MEDIUM | 2019-04-22 | 2023-11-07 |
| CVE-2019-0201 | An issue is present in Apache ZooKeeper 1.0.0 to 3.4.13 and 3.5.0-alpha to 3.5.4-beta. ZooKeeper’s getACL() command doesn�... | 5.9 - MEDIUM | 2019-05-23 | 2023-11-07 |
| CVE-2017-15288 | The compilation daemon in Scala before 2.10.7, 2.11.x before 2.11.12, and 2.12.x before 2.12.4 uses weak permissions for priv... | 7.8 - HIGH | 2017-11-15 | 2023-11-07 |
| CVE-2017-12630 | In Apache Drill 1.11.0 and earlier when submitting form from Query page users are able to pass arbitrary script or HTML which... | 5.4 - MEDIUM | 2017-12-18 | 2023-11-07 |
| CVE-2010-5312 | Cross-site scripting (XSS) vulnerability in jquery.ui.dialog.js in the Dialog widget in jQuery UI before 1.10.0 allows remote... | 6.1 - MEDIUM | 2014-11-24 | 2023-06-21 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Apache | Drill | 1.9.0 | All | All | All |
| Application | Apache | Drill | 1.8.0 | All | All | All |
| Application | Apache | Drill | 1.7.0 | All | All | All |
| Application | Apache | Drill | 1.6.0 | All | All | All |
| Application | Apache | Drill | 1.5.0 | All | All | All |
| Application | Apache | Drill | 1.4.0 | All | All | All |
| Application | Apache | Drill | 1.3.0 | All | All | All |
| Application | Apache | Drill | 1.2.0 | All | All | All |
| Application | Apache | Drill | 1.16.0 | All | All | All |
| Application | Apache | Drill | 1.11.0 | All | All | All |
| Application | Apache | Drill | 1.10.0 | All | All | All |
| Application | Apache | Drill | 1.1.0 | All | All | All |
| Application | Apache | Drill | 1.0.0 | All | All | All |
| Application | Apache | Drill | 0.9.0 | All | All | All |
| Application | Apache | Drill | 0.8.0 | All | All | All |
| Application | Apache | Drill | 0.7.0 | All | All | All |
| Application | Apache | Drill | 0.6.0 | All | All | All |
| Application | Apache | Drill | 0.5.0 | All | All | All |
| Application | Apache | Drill | 0.4.0 | All | All | All |