org.apache.pinot:pinot-controller (Maven) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Maven package org.apache.pinot:pinot-controller, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2024-56325 — CVSS 9.8 (critical): Authentication Bypass Issue If the path does not contain / and contain., authentication is not required. Expected Normal Request and…
CVE-2024-39676 — CVSS 7.5 (high): Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Pinot. This issue affects Apache Pinot: from 0.1 before…