Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:0 a.m.9 views

CVE-2023-47629

DataHub is an open-source metadata platform. In affected versions sign-up through an invite link does not properly restrict users from signing up as privileged accounts. If a user is given an email sign-up link they can potentially create an admin account given certain preconditions. If the defau...

8CVSS6.8AI score0.00472EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/11/14 12:32 a.m.11 views

CVE-2023-47629 Privilege escalation through email sign-up in datahub

DataHub is an open-source metadata platform. In affected versions sign-up through an invite link does not properly restrict users from signing up as privileged accounts. If a user is given an email sign-up link they can potentially create an admin account given certain preconditions. If the defau...

7.1CVSS6.8AI score0.00472EPSS
Exploits0References1
CVE
CVE
added 2023/11/14 12:32 a.m.51 views

CVE-2023-47629

Summary: CVE-2023-47629 affects DataHub, where sign-up via an invite link can let a user create an admin account under certain preconditions, if the default DataHub user was removed but default policies remain. This can enable privilege escalation to admin level on affected installations. Affecte...

8CVSS7.3AI score0.00472EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/11/14 12:32 a.m.26 views

CVE-2023-47629 Privilege escalation through email sign-up in datahub

DataHub is an open-source metadata platform. In affected versions sign-up through an invite link does not properly restrict users from signing up as privileged accounts. If a user is given an email sign-up link they can potentially create an admin account given certain preconditions. If the defau...

7.1CVSS8AI score0.00472EPSS
Exploits0References1
Rows per page
Query Builder