Описание
YugabyteDB diagnostic information was transmitted over HTTP, which could expose sensitive data during transmission
Меры по смягчению последствий
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat JBoss Enterprise Application Platform 8 | yugabytedb | Fix deferred | ||
| Red Hat JBoss Enterprise Application Platform Expansion Pack | yugabytedb | Fix deferred |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-319
https://bugzilla.redhat.com/show_bug.cgi?id=2387620yugabytedb: YugabyteDB information exposure
EPSS
Процентиль: 6%
0.00026
Низкий
3.7 Low
CVSS3
Связанные уязвимости
nvd
3 месяца назад
YugabyteDB diagnostic information was transmitted over HTTP, which could expose sensitive data during transmission
github
3 месяца назад
YugabyteDB diagnostic information was transmitted over HTTP, which could expose sensitive data during transmission
EPSS
Процентиль: 6%
0.00026
Низкий
3.7 Low
CVSS3