RSS   Podatności dla 'Greenplum'   RSS

2021-11-19
 
CVE-2021-22028

CWE-22
 

 
In versions of Greenplum database prior to 5.28.6 and 6.14.0, greenplum database contains a file path traversal vulnerability leading to information disclosure from the file system. A malicious user can read/write information from the file system using this vulnerability.

 
 
CVE-2021-22030

CWE-532
 

 
In versions of Greenplum database prior to 5.28.14 and 6.17.0, certain statements execution led to the storage of sensitive(credential) information in the logs of the database. A malicious user with access to logs can read sensitive(credentials) information about users

 


Copyright 2022, cxsecurity.com

 

Back to Top