PT-2023-15506 · Jedox · Jedox
Name of the Vulnerable Software and Affected Versions: Jedox versions 2020.2.5 Description: The issue allows remote authenticated users to view details of database connections via the class com.jedox.etl.mngr.Connections and the method getGlobalConnection in the /tc/rpc endpoint. Recommendations:...