Lucene search

K
cve[email protected]CVE-2023-50740
HistoryMar 06, 2024 - 2:15 p.m.

CVE-2023-50740

2024-03-0614:15:47
CWE-532
web.nvd.nist.gov
39
cve
apache linkis
password leakage
data source
oracle
upgrade
nvd

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%

In Apache Linkis <=1.4.0, The password is printed to the log when using the Oracle data source of the Linkis data source module. 
We recommend users upgrade the version of Linkis to version 1.5.0

Affected configurations

Vulners
Node
apachelinkisRange1.5.0

CNA Affected

[
  {
    "collectionURL": "https://repo.maven.apache.org/maven2",
    "defaultStatus": "unaffected",
    "packageName": "org.apache.linkis:linkis-metadata-query-service-jdbc",
    "product": "Apache Linkis DataSource",
    "vendor": "Apache Software Foundation",
    "versions": [
      {
        "lessThan": "1.5.0",
        "status": "affected",
        "version": "*",
        "versionType": "maven"
      }
    ]
  }
]

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%

Related for CVE-2023-50740