exploitDog

CVE-2023-34463

Опубликовано: 26 июн. 2023

Источник: nvd

CVSS3: 8.1

EPSS Низкий

Описание

DataEase is an open source data visualization analysis tool to analyze data and gain insight into business trends. In affected versions Unauthorized users can delete an application erroneously. This vulnerability has been fixed in version 1.18.8. Users are advised to upgrade. There are no known workarounds for this vulnerability.

Ссылки

https://github.com/dataease/dataease/security/advisories/GHSA-4c4p-qfwq-85fj
Exploit
Vendor Advisory
https://github.com/dataease/dataease/security/advisories/GHSA-4c4p-qfwq-85fj
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:dataease:dataease:*:*:*:*:*:*:*:*

Версия до 1.18.8 (исключая)

EPSS

Процентиль: 34%

0.00134

Низкий

8.1 High

CVSS3

Дефекты

CWE-862

EPSS

Процентиль: 34%

0.00134

Низкий

8.1 High

CVSS3

Дефекты

CWE-862