CVE-2023-33247

Name of the Vulnerable Software and Affected Versions Talend Data Catalog versions prior to 8.0-20230413

Description The issue concerns the remote harvesting server, which contains a "/upgrade" endpoint that allows an unauthenticated WAR file to be deployed on the server. A mitigation measure is to place the remote harvesting server behind a firewall that only allows access to the Talend Data Catalog server.

Recommendations For versions prior to 8.0-20230413, update to version 8.0-20230413 or later to resolve the issue. As a temporary workaround, consider restricting access to the "/upgrade" endpoint until a patch is available. Place the remote harvesting server behind a firewall that only allows access to the Talend Data Catalog server to minimize the risk of exploitation.