CISA Added Apache Flink CVE-2020-17519 Vulnerability to KEV

CISA warns Apache Flink users about a critical vulnerability. Cybercriminals are exploiting this flaw to compromise systems.

Apache Flink is a widely used open-source platform for processing large datasets in real-time analytics, machine learning, and data-intensive applications. Its capability to handle both bounded and unbounded data streams makes it a versatile tool for organizations striving to gain insights from their data.

• Alert
• Hot Topic

338 fraudulent Olympics games ticketing websites

By infosecbulletin / Sunday , June 16 2024

Proofpoint found a fake website selling tickets for the Paris 2024 Summer Olympic Games. The website, "paris24tickets[.]com," claimed to be...

Read More

• Alert

ASUS warn serious security vulnerability on 7 routers

By infosecbulletin / Saturday , June 15 2024

ASUS released a new firmware update to fix a vulnerability affecting seven router models, which could be exploited by remote...

Read More

• International

AWS Announced New Malware Detection Tool For S3 Buckets

By infosecbulletin / Friday , June 14 2024

AWS announced new security features at its re:Inforce conference, such as identity and malware protection services. The cloud giant added...

Read More

• National

150,000 phones registered under one IMEI number in Bangladesh

By infosecbulletin / Friday , June 14 2024

A smartphone's IMEI (which stands for International Mobile Equipment Identity) is a unique identifier for each device, similar to a...

Read More

• International

CISA Releases Twenty Industrial Control Systems Advisories

By infosecbulletin / Friday , June 14 2024

CISA released 20 advisories about Industrial Control Systems (ICS) on June 13, 2024. These advisories give important information about security...

Read More

• Vulnerabilities

Current web vulnerabilities in Bangladesh across vendor product line

By infosecbulletin / Thursday , June 13 2024

On a report titled "Surge on Web defacement and web application related vulnerabilities targeting Bangladesh" BGD e-GOV CIRT said, web...

Read More

• Cyber Attack

Criminals impersonating CISA’s employees in phone calls

By infosecbulletin / Thursday , June 13 2024

CISA warned that criminals are pretending to be its employees in phone calls in order to trick people into sending...

Read More

• Vulnerabilities

CISA Adds Two Known Exploited Vulnerabilities to Catalog

By infosecbulletin / Wednesday , June 12 2024

CISA added 2 new vulnerabilities to its catalog of known exploited vulnerabilities, because they have proof that these vulnerabilities are...

Read More

• International

Microsoft Tuesday fixes 51 flaws, 18 RCEs June 2024 Patch

By infosecbulletin / Wednesday , June 12 2024

Microsoft has released updates for 49 security vulnerabilities in its Patch Tuesday update for June. One of the fixes addresses...

Read More

• Cyber Attack
• Data Breach
• Vulnerabilities

Hackers breached 20,000 FortiGate systems worldwide: MIVD

By infosecbulletin / Wednesday , June 12 2024

The Dutch military security service MIVD recently revealed that a cyber espionage campaign, which was initially mentioned in February, managed...

Read More

CVE-2020-17519 is a vulnerability that lets attackers read files on the local filesystem of the JobManager process. This could expose sensitive data and confidential information to malicious actors.

Organizations using Apache Flink versions 1.11.0, 1.11.1, or 1.11.2 are at risk, especially if their Flink instances are exposed to the internet or untrusted networks.

Federal agencies need to update their software to Apache Flink version 1.19.0 or later by June 13, 2024, to protect their networks from security threats.