Known Vulnerabilities for products from Talend
Listed below are 17 of the newest known vulnerabilities associated with the vendor "Talend".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-6264 json | Not Provided | 2026-04-14 | 2026-04-16 | |
| CVE-2023-36301 json | Talend Data Catalog before 8.0-20230221 contain a directory traversal vulnerability in HeaderImageServlet. | 7.5 - HIGH | 2023-06-26 | 2023-07-13 |
| CVE-2023-33247 json | Talend Data Catalog remote harvesting server before 8.0-20230413 contains a /upgrade endpoint that allows an unauthenticated ... | 7.5 - HIGH | 2023-05-26 | 2023-06-02 |
| CVE-2023-31444 json | In Talend Studio before 7.3.1-R2022-10 and 8.x before 8.0.1-R2022-09, microservices allow unauthenticated access to the Jolok... | 7.5 - HIGH | 2023-04-28 | 2023-05-08 |
| CVE-2023-26264 json | All versions of Talend Data Catalog before 8.0-20220907 are potentially vulnerable to XML External Entity (XXE) attacks in th... | 5.5 - MEDIUM | 2023-04-13 | 2023-04-21 |
| CVE-2023-26263 json | All versions of Talend Data Catalog before 8.0-20230110 are potentially vulnerable to XML External Entity (XXE) attacks in th... | 5.5 - MEDIUM | 2023-04-13 | 2023-04-21 |
| CVE-2022-45589 json | All versions before 8.0.1-R2022-10-RT and 7.3.1-R2022-09-RT of the Talend ESB Runtime are potentially vulnerable to SQL Injec... | 7.2 - HIGH | 2023-02-06 | 2023-04-03 |
| CVE-2022-45588 json | All versions before R2022-09 of Talend's Remote Engine Gen 2 are potentially vulnerable to XML External Entity (XXE) type of ... | 7.8 - HIGH | 2023-02-03 | 2023-04-03 |
| CVE-2022-31648 json | Talend Administration Center is vulnerable to a reflected Cross-Site Scripting (XSS) issue in the SSO login endpoint. The iss... | 6.1 - MEDIUM | 2022-05-26 | 2022-06-08 |
| CVE-2022-30332 json | In Talend Administration Center 7.3.1.20200219 before TAC-15950, the Forgot Password feature provides different error message... | 5.3 - MEDIUM | 2023-01-10 | 2023-01-18 |
| CVE-2022-29943 json | Talend Administration Center has a vulnerability that allows an authenticated user to use XML External Entity (XXE) processin... | 6.5 - MEDIUM | 2022-05-04 | 2022-05-13 |
| CVE-2022-29942 json | Talend Administration Center has a vulnerability that allows an authenticated user to use the Service Registry 'Add' function... | 6.5 - MEDIUM | 2022-05-04 | 2022-05-13 |
| CVE-2022-4818 json | A vulnerability was found in Talend Open Studio for MDM. It has been declared as problematic. Affected by this vulnerability ... | 4.3 - MEDIUM | 2022-12-28 | 2023-11-07 |
| CVE-2021-42837 json | An issue was discovered in Talend Data Catalog before 7.3-20210930. After setting up SAML/OAuth, authentication is not correc... | 9.8 - CRITICAL | 2021-11-05 | 2022-07-12 |
| CVE-2021-40684 json | Talend ESB Runtime in all versions from 5.1 to 7.3.1-R2021-09, 7.2.1-R2021-09, 7.1.1-R2021-09, has an unauthenticated Jolokia... | 9.1 - CRITICAL | 2021-09-22 | 2022-07-12 |
| CVE-2021-4311 json | A vulnerability classified as problematic was found in Talend Open Studio for MDM. This vulnerability affects unknown code of... | 9.8 - CRITICAL | 2023-01-09 | 2023-11-07 |
| CVE-2014-2228 json | The XStream extension in HP Fortify SCA before 2.2 RC3 allows remote attackers to execute arbitrary code via unsafe deseriali... | 9.8 - CRITICAL | 2020-02-19 | 2020-03-06 |
| CVE-2012-2656 json | An XML eXternal Entity (XXE) issue exists in Restlet 1.1.10 in an endpoint using XML transport, which lets a remote attacker ... | 7.5 - HIGH | 2019-12-18 | 2019-12-23 |
Known software with vulnerabilities from Talend
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Talend | Restlet | 1.1.10 |