CVE-2023-45860 Information

Description

In Hazelcast Platform through 5.3.4 a security issue exists within the SQL mapping for the CSV File Source connector. This issue arises from inadequate permission checking which could enable unauthorized clients to access data from files stored on a member’s filesystem.

Reference

https://github.com/hazelcast/hazelcast/pull/25348 https://github.com/hazelcast/hazelcast/security/advisories/GHSA-8h4x-xvjp-vf99