2 matches found
CVE-2024-8057
In version 0.4.1 of danswer-ai/danswer, a vulnerability exists where a basic user can create credentials and link them to an existing connector. This issue arises because the system allows an unauthenticated attacker to sign up with a basic account and perform actions that should be restricted to...
IBM Common Licensing Information Disclosure Vulnerability
IBM Common Licensing is a license management solution from International Business Machines IBM. IBM Common Licensing suffers from an information disclosure vulnerability that stems from storing user credentials in plain plaintext, which can be exploited by an attacker to cause them to be readable...