CVE-2023-28877
The CVE concerns the VTEX [email protected] GraphQL API module, where unauthorized access to private configuration data is not properly restricted. The issue affects [email protected]; [email protected] is unaffected. The root cause is insufficient access controls exposing private configuration data...