Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in MariaDB MaxScale before 23.02.3. A user enters an encrypted password on a "maxctrl create service" command line, but this password is then stored in cleartext in the resulting .cnf file under /var/lib/maxscale/maxscale.cnf.d. The fixed versions are 2.5.28, 6.4.9, 22.08.8, and 23.02.3.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MariaDB 安全漏洞
Vulnerability Description
MariaDB是Mariadb基金会的一套免费开源的数据库管理系统,也是一个采用Maria存储引擎的MySQL分支版本。 MariaDB MaxScale 23.02.3之前版本存在安全漏洞,该漏洞源于密码会以明文形式存储在/var/lib/maxscale/maxscale.cnf.d下生成的.cnf文件中。
CVSS Information
N/A
Vulnerability Type
N/A