Apache Kylin 产品漏洞列表 / CVE 中文分析 20

Apache Kylin 产品相关 20 条漏洞，AI 中文标题与摘要、CVSS、POC 一站汇总。

ベンダー: n/a

CVE ID	タイトル	CVSS	深刻度	公開日
CVE-2025-61735	Apache Kylin: Server-Side Request Forgery CWE-918	9.1^AI	Critical^AI	2025-10-02
CVE-2025-61733	Apache Kylin: Authentication bypass CWE-288	9.8^AI	Critical^AI	2025-10-02
CVE-2025-61734	Apache Kylin: improper restriction of file read CWE-552	9.1^AI	Critical^AI	2025-10-02
CVE-2025-30067	Apache Kylin: The remote code execution via jdbc url CWE-94	9.8^AI	Critical^AI	2025-03-27
CVE-2024-48944	Apache Kylin: SSRF vulnerability in the diagnosis api CWE-918	4.4^AI	Medium^AI	2025-03-27
CVE-2024-23590	Apache Kylin: Session fixation in web interface CWE-384	9.8^AI	Critical^AI	2024-11-04
CVE-2023-29055	Apache Kylin: Insufficiently protected credentials in config file CWE-522	9.8	-	2024-01-29
CVE-2022-44621	Apache Kylin: Command injection by Diagnosis Controller	9.8	-	2022-12-30
CVE-2022-43396	Apache Kylin: Command injection by Useless configuration	8.8	-	2022-12-30
CVE-2022-24697	Apache Kylin prior to 4.0.2 allows command injection when the configuration overwrites function overwrites system parameters	9.8	-	2022-10-13
CVE-2021-45458	Hardcoded credentials CWE-798	7.5	-	2022-01-06
CVE-2021-45457	Overly broad CORS configuration	7.5	-	2022-01-06
CVE-2021-45456	Command injection	9.8	-	2022-01-06
CVE-2021-36774	Mysql JDBC Connector Deserialize RCE	6.5	-	2022-01-06
CVE-2021-31522	Apache Kylin unsafe class loading	9.8	-	2022-01-06
CVE-2021-27738	Improper Access Control to Streaming Coordinator & SSRF CWE-918	7.5	-	2022-01-06
CVE-2020-13937	Apache Kylin 安全漏洞	5.3	-	2020-10-19
CVE-2020-13926	Apache Kylin SQL注入漏洞	9.8	-	2020-07-14
CVE-2020-13925	Apache Kylin 安全漏洞	9.8	-	2020-07-14
CVE-2020-1937	Apache Kylin SQL注入漏洞	9.8	-	2020-02-24

Apache Kylin 产品累计公开 20 条 CVE 漏洞，本页提供按时间倒序的完整列表，包含 CVSS、CWE、AI 中文摘要与可获取的 POC 链接。

目標達成 すべての支援者に感謝 — 100%達成しました！

Apache Kylin 产品漏洞列表 / CVE 中文分析 20

目標達成すべての支援者に感謝 — 100%達成しました！