CVE-2023-28637|DataEase is an open source data... - VULHUB开源网络安全威胁库

DataEase is an open source data... CVE-2023-28637

- AV AC AU C I A

发布： 2023-03-28

修订： 2023-04-04

CWE-74

DataEase is an open source data visualization analysis tool. In Dataease users are normally allowed to modify data and the data sources are expected to properly sanitize data. The AWS redshift data source does not provide data sanitization which may lead to remote code execution. This vulnerability has been fixed in v1.18.5. Users are advised to upgrade. There are no known workarounds for this vulnerability.

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有1条受影响产品信息

您还没有登录，登录后可查看更多

添加资源
收藏资源
问题反馈

贡献用户

暂无贡献用户

VULHUB ™

DataEase is an open source data... CVE-2023-28637

漏洞利用/PoC

受影响的平台与产品

贡献用户

相关漏洞清单