CVE-2024-27182

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.openwall.com/lists/oss-security/2024/08/02/4", "name": "http://www.openwall.com/lists/oss-security/2024/08/02/4", "tags": [], "refsource": ""}, {"url": "https://lists.apache.org/thread/2of1p433h8rbq2bx525rtftnk19oz38h", "name": "https://lists.apache.org/thread/2of1p433h8rbq2bx525rtftnk19oz38h", "tags": ["Mailing List", "Vendor Advisory"], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "In Apache Linkis <= 1.5.0,\n\nArbitrary file deletion in Basic management services on \n\nA user with an administrator account could delete any file accessible by the Linkis system user\n\n.\nUsers are recommended to upgrade to version 1.6.0, which fixes this issue."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-552"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2024-27182", "ASSIGNER": "security@apache.org"}}, "impact": {"baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.2}}, "publishedDate": "2024-08-02T10:16Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:apache:linkis:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "1.6.0", "versionStartIncluding": "1.3.2"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-03-27T16:15Z"}