Server-Side Request Forgery (SSRF), Improperly Controlled Modification of Dynamically-Determined Object Attributes, Improper Restriction of Excessive Authentication Attempts vulnerability in YugaByte, Inc. Yugabyte Managed allows Accessing Functionality Not Properly Constrained by ACLs, Communication Channel Manipulation, Authentication Abuse.This issue affects Yugabyte Managed: from 2.0.0.0 through 2.13.0.0
References
Link | Resource |
---|---|
https://www.yugabyte.com/ | Product |
https://www.yugabyte.com/ | Product |
Configurations
History
21 Nov 2024, 07:37
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-02-09 15:15
Updated : 2024-11-21 07:37
NVD link : CVE-2023-0574
Mitre link : CVE-2023-0574
CVE.ORG link : CVE-2023-0574
JSON object : View
Products Affected
yugabyte
- yugabytedb_managed
CWE
CWE-307
Improper Restriction of Excessive Authentication Attempts
CWE-915Improperly Controlled Modification of Dynamically-Determined Object Attributes
CWE-918Server-Side Request Forgery (SSRF)
NVD-CWE-noinfo