Primary

Context

Apache StreamPark Incorrect Execution-Assigned Permissions Vulnerability

Vulnerability

Patched

A vulnerability allowing incorrect execution-assigned permissions has been identified in Apache StreamPark versions 2.1.4 prior to 2.1.6. This issue could potentially be exploited by authenticated users to trigger remote command execution.

Impact

Exploitation of this vulnerability allows authenticated users to execute commands remotely on the server where Apache StreamPark is running.

Remediation

Users are advised to upgrade to Apache StreamPark version 2.1.6, which addresses this vulnerability.

Added: Oct 10, 2025, 10:21 AM

Updated: Oct 10, 2025, 10:21 AM

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

10.0

exploitability

4.9

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

10.0

exploitability

4.9

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apache StreamPark Incorrect Execution-Assigned Permissions Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Apache StreamPark

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating