Is CVE-2021-36749 known to be exploited?

55 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Apache Software Foundation Druid

CVE-2021-36749

In the Druid ingestion system, the InputSource is used for reading data from a certain data source. However, the HTTP InputSource allows authenticated users to read data from other sources than intended, such as the local file system, with…

EPSS: 0.938 (99.9th percentile) — read the EPSS interpretation.

Affected products

Apache Software Foundation Druid — versions 0.21.1 and earlier

Public proof-of-concept exploits

References

lists.apache.org/thread.html/rc9400a70d0ec5cdb8a3486fc5ddb0b5282961c0b63e764abf… (x_refsource_MISC)
[announce] 20210923 CVE-2021-36749: Apache Druid: The HTTP inputSource allows authenticated users to read data from other sources than intended (incomplete fix of CVE-2021-26920) (mailing-list, x_refsource_MLIST)

Frequently asked questions

What is CVE-2021-36749?: CVE-2021-36749 is a vulnerability in Apache Software Foundation Druid. Published 2021-09-24.
Is CVE-2021-36749 known to be exploited?: 55 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.