CVE-2018-1331 is a vulnerability in Apache Storm
Published on July 10, 2018

In Apache Storm 0.10.0 through 0.10.2, 1.0.0 through 1.0.6, 1.1.0 through 1.1.2, and 1.2.0 through 1.2.1, an attacker with access to a secure storm cluster in some cases could execute arbitrary code as a different user.

NVD

Products Associated with CVE-2018-1331

Want to know whenever a new CVE is published for Apache Storm? stack.watch will email you.

Apache Storm

Affected Versions

Apache Software Foundation Apache Storm:

Version 0.10.0 through 0.10.2 is affected.
Version 1.0.0 through 1.0.6 is affected.
Version 1.1.0 through 1.1.2 is affected.
Version 1.2.0 through 1.2.1 is affected.

Exploit Probability

EPSS

5.11%

Percentile

89.69%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-1331 is a vulnerability in Apache StormPublished on July 10, 2018

Products Associated with CVE-2018-1331

Affected Versions

Exploit Probability

CVE-2018-1331 is a vulnerability in Apache Storm
Published on July 10, 2018