CVE-2025-2298 | Dremio Software up to 24.3.17/25.0.15/25.1.7/25.2.4 on Linux API Endpoint authorization

A vulnerability was found in Dremio Software up to 24.3.17/25.0.15/25.1.7/25.2.4 on Linux and classified as problematic. This issue affects some unknown processing of the component API Endpoint. The manipulation leads to missing authorization.

The identification of this vulnerability is CVE-2025-2298. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More