Primary

Context

Apache StreamPipes Improper Privilege Management Vulnerability Allowing Resource Permission Escalation

Vulnerability

Patched

A vulnerability in Apache StreamPipes prior to 0.95.1 allows registered users to access unauthorized resources through the REST interface, provided they know the resource ID. This issue arises from improper privilege management, enabling unauthorized access to certain resources.

Impact

Exploitation of this vulnerability could lead to unauthorized access to resources, allowing users to view or manipulate data they should not have access to.

Remediation

Users are advised to upgrade to Apache StreamPipes version 0.97.0 or later, which addresses this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.9

impact

0.6

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.9

impact

0.6

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apache StreamPipes Improper Privilege Management Vulnerability Allowing Resource Permission Escalation

Vulnerability

Impact

Remediation

Affected Products

Apache StreamPipes

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating