Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
DB User Password Leak in Application Log
Vulnerability Description
Information exposure in the logging system in Yugabyte Platform allows local attackers with access to application logs to obtain database user credentials in log files, potentially leading to unauthorized database access.
CVSS Information
N/A
Vulnerability Type
通过日志文件的信息暴露
Vulnerability Title
YugabyteDB 安全漏洞
Vulnerability Description
YugabyteDB是美国Yugabyte公司的一款用于云原生应用程序的高性能事务性分布式 SQL 数据库。 YugabyteDB存在安全漏洞,该漏洞源于信息泄露。具有应用程序日志访问权限的本地攻击者利用该漏洞可以获取日志文件中的数据库用户凭据,从而可能导致未经授权的数据库访问。
CVSS Information
N/A
Vulnerability Type
N/A