CVE-2021-36774

Apache Kylin allows users to read data from other database systems using JDBC. The MySQL JDBC driver supports certain properties, which, if left unmitigated, can allow an attacker to execute arbitrary code from a hacker-controlled malicious MySQL server within Kylin server processes. This issue affects Apache Kylin 2 version 2.6.6 and prior versions; Apache Kylin 3 version 3.1.2 and prior versions.

Published: Jan 6, 2022
Updated: Aug 9, 2023
CVE: CVE-2021-36774
GHSA: GHSA-5429-pjww-7675
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:P/I:N/A:N

CWEs:

CWE-668
CWE-89

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
apache / kylin	2.0.0	2.6.6.x
apache / kylin	3.0.0	3.1.2.x
org.apache.kylin / kylin	-	3.1.3

http://www.openwall.com/lists/oss-security/2022/01/06/5
https://github.com/apache/kylin/pull/1646
https://lists.apache.org/thread/lchpcvoolc6w8zc6vo1wstk8zbfqv2ow

Vulnerability Database

CVE-2021-36774

Deep Security Visibility Without the Complexity