exploitDog

GHSA-jj53-4h2j-9gmj

Опубликовано: 08 нояб. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.8

Описание

Prometheus metrics are available without authentication. These expose detailed and sensitive information about the YugabyteDB Anywhere environment.

Prometheus metrics are available without authentication. These expose detailed and sensitive information about the YugabyteDB Anywhere environment.

Ссылки

EPSS

Процентиль: 38%

0.00166

Низкий

5.8 Medium

CVSS3

CVE ID

Дефекты

CWE-200

CWE-862

Связанные уязвимости

CVE-2023-6001

CVSS3: 5.3

nvd

больше 2 лет назад

Prometheus metrics are available without authentication. These expose detailed and sensitive information about the YugabyteDB Anywhere environment.

EPSS

Процентиль: 38%

0.00166

Низкий

5.8 Medium

CVSS3

CVE ID

Дефекты

CWE-200

CWE-862