We found results for “”
CVE-2023-50740
Good to know:
Date: March 6, 2024
In Apache Linkis <=1.4.0, The password is printed to the log when using the Oracle data source of the Linkis data source module. We recommend users upgrade the version of Linkis to version 1.5.0
Language: Java
Severity Score
Severity Score
Weakness Type (CWE)
Information Exposure Through Log Files
CWE-532Top Fix
Upgrade Version
Upgrade to version org.apache.linkis:linkis-metadata-query-service-jdbc:1.5.0, org.apache.linkis:linkis-application-manager:1.5.0
CVSS v3.1
Base Score: |
|
---|---|
Attack Vector (AV): | NETWORK |
Attack Complexity (AC): | LOW |
Privileges Required (PR): | NONE |
User Interaction (UI): | REQUIRED |
Scope (S): | UNCHANGED |
Confidentiality (C): | HIGH |
Integrity (I): | NONE |
Availability (A): | NONE |