▽Security Basics ●02/05 01:03 CVE-2024-48019: Apache Doris: allows admin users to read arbitrary files through the REST API Mingyu Chen (Feb 04)Severity: LOWAffected versions:- Apache Doris 2.1.0 before 2.1.8- Apache Doris 3.0.0 before 3.0.3Description:Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Files or Directories Accessible toExternal Parties vulnerability in Apache Doris.Applicat
▽Bugtraq ●02/05 01:03 CVE-2024-48019: Apache Doris: allows admin users to read arbitrary files through the REST API Mingyu Chen (Feb 04)Severity: LOWAffected versions:- Apache Doris 2.1.0 before 2.1.8- Apache Doris 3.0.0 before 3.0.3Description:Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Files or Directories Accessible toExternal Parties vulnerability in Apache Doris.Applicat
▽Full Disclosure ●02/05 01:03 CVE-2024-48019: Apache Doris: allows admin users to read arbitrary files through the REST API Mingyu Chen (Feb 04)Severity: LOWAffected versions:- Apache Doris 2.1.0 before 2.1.8- Apache Doris 3.0.0 before 3.0.3Description:Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Files or Directories Accessible toExternal Parties vulnerability in Apache Doris.Applicat
▽Schneier on Security ●02/04 19:42 Journalists and Civil Society Members Using WhatsApp Targeted by Paragon SpywareThis is yet another story of commercial spyware being used against journalists and civil society members.The journalists and other civil society members were being alerted of a possible breach of their devices, with WhatsApp telling the Guardian it had “high confidence” that the 90 users in question had been targeted
