CVE-2023-22950
6.5MEDIUMAn issue was discovered in TigerGraph Enterprise Free Edition 3.x. Data loading jobs in gsql_server, created by any user with designer permissions, can read sensitive data from arbitrary locations.
Publicado: 4/13/2023Atualizado: 2/7/2025
Descrição
An issue was discovered in TigerGraph Enterprise Free Edition 3.x. Data loading jobs in gsql_server, created by any user with designer permissions, can read sensitive data from arbitrary locations.
Análise IADesenvolvido por IA
Produtos Afetados
tigergraphtigergraph
tigergraphtigergraph
Referências
- https://dev.tigergraph.com/forum/c/tg-community/announcements/35Vendor Advisory
- https://neo4j.com/security/cve-2023-22950/ExploitThird Party Advisory
- https://dev.tigergraph.com/forum/c/tg-community/announcements/35Vendor Advisory
- https://neo4j.com/security/cve-2023-22950/ExploitThird Party Advisory