Описание
Datalust Seq before 2023.2.9489 allows insertion of sensitive information into an externally accessible file or directory. This is exploitable only when external (SQL Server or PostgreSQL) metadata storage is used. Exploitation can only occur from a high-privileged user account.
Ссылки
- Issue TrackingVendor Advisory
- Issue TrackingVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2023.2.9489 (исключая)
cpe:2.3:a:datalust:seq:*:*:*:*:*:*:*:*
EPSS
Процентиль: 35%
0.00147
Низкий
4.9 Medium
CVSS3
Дефекты
NVD-CWE-Other
Связанные уязвимости
CVSS3: 4.9
github
больше 2 лет назад
Datalust Seq before 2023.2.9489 allows insertion of sensitive information into an externally accessible file or directory. This is exploitable only when external (SQL Server or PostgreSQL) metadata storage is used. Exploitation can only occur from a high-privileged user account.
EPSS
Процентиль: 35%
0.00147
Низкий
4.9 Medium
CVSS3
Дефекты
NVD-CWE-Other