Every CVE whose affected-product data names Talend Data Catalog, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2021-42837 — CVSS 9.8 (critical): An issue was discovered in Talend Data Catalog before 7.3-20210930. After setting up SAML/OAuth, authentication is not correctly enforced…
CVE-2023-33247 — CVSS 7.5 (high): Talend Data Catalog remote harvesting server before 8.0-20230413 contains a /upgrade endpoint that allows an unauthenticated WAR file to be…
CVE-2023-36301 — CVSS 7.5 (high): Talend Data Catalog before 8.0-20230221 contain a directory traversal vulnerability in HeaderImageServlet.
CVE-2023-26263 — CVSS 5.5 (medium): All versions of Talend Data Catalog before 8.0-20230110 are potentially vulnerable to XML External Entity (XXE) attacks in the…
CVE-2023-26264 — CVSS 5.5 (medium): All versions of Talend Data Catalog before 8.0-20220907 are potentially vulnerable to XML External Entity (XXE) attacks in the license…