| Max CVSS | 9.0 | Min CVSS | 6.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-1937 | 6.5 |
Kylin has some restful apis which will concatenate SQLs with the user input string, a user is likely to be able to run malicious database queries.
|
30-12-2021 - 20:56 | 24-02-2020 - 21:15 | |
| CVE-2020-1956 | 9.0 |
Apache Kylin 2.3.0, and releases up to 2.6.5 and 3.0.1 has some restful apis which will concatenate os command with the user input string, a user is likely to be able to execute any os command without any protection or validation.
|
15-07-2020 - 10:15 | 22-05-2020 - 14:15 |