CVE-2023-22950
6.5MEDIUMAn issue was discovered in TigerGraph Enterprise Free Edition 3.x. Data loading jobs in gsql_server, created by any user with designer permissions, can read sensitive data from arbitrary locations.
Veröffentlicht: 4/13/2023Aktualisiert: 2/7/2025
Beschreibung
An issue was discovered in TigerGraph Enterprise Free Edition 3.x. Data loading jobs in gsql_server, created by any user with designer permissions, can read sensitive data from arbitrary locations.
KI-AnalyseKI-gestützt
Betroffene Produkte
tigergraphtigergraph
tigergraphtigergraph
Referenzen
- https://dev.tigergraph.com/forum/c/tg-community/announcements/35Vendor Advisory
- https://neo4j.com/security/cve-2023-22950/ExploitThird Party Advisory
- https://dev.tigergraph.com/forum/c/tg-community/announcements/35Vendor Advisory
- https://neo4j.com/security/cve-2023-22950/ExploitThird Party Advisory