CVE-2023-29055 | Apache Kylin up to 4.0.3 Server Config Web Interface kylin.properties cleartext transmission

Posted by Angelo Barbosa | Jan 29, 2024 | CVE

A vulnerability was found in Apache Kylin up to 4.0.3. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Server Config Web Interface. The manipulation of the argument kylin.properties leads to cleartext transmission of sensitive information.

This vulnerability is handled as CVE-2023-29055. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-29055 | Apache Kylin up to 4.0.3 Server Config Web Interface kylin.properties cleartext transmission

Related Posts

CVE-2024-1421 | HT Mega Plugin up to 2.4.4 on WordPress Post Carousel Widget cross site scripting

CVE-2024-23750 | geekan MetaGPT up to 0.6.4 RunCode.run_script os command injection (Issue 731)

CVE-2024-28020 | Hitachi Energy FOXMAN-UN/UNEM incorrect user management

CVE-2024-6932 | ClassCMS 4.5 order cross site scripting