Is CVE-2022-43396 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Apache Software Foundation Kylin

CVE-2022-43396

In the fix for CVE-2022-24697, a blacklist is used to filter user input commands. But there is a risk of being bypassed. The user can control the command by controlling the kylin.engine.spark-cmd parameter of conf.

EPSS: 0.568 (98.9th percentile) — read the EPSS interpretation.

Affected products

Apache Software Foundation Kylin — versions Apache Kylin 4

Public proof-of-concept exploits

Threekiii/CVE

References

lists.apache.org/thread/ob2ks04zl5ms0r44cd74y1xdl1rzfd1r (vendor-advisory)

Frequently asked questions

What is CVE-2022-43396?: CVE-2022-43396 is a vulnerability in Apache Software Foundation Kylin. Published 2022-12-30.
Is CVE-2022-43396 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.