CVE-2023-30625 in rudder-server정보

요약

\~에 의해 MITRE • 2023. 06. 16.

rudder-server is part of RudderStack, an open source Customer Data Platform (CDP). Versions of rudder-server prior to 1.3.0-rc.1 are vulnerable to SQL injection. This issue may lead to Remote Code Execution (RCE) due to the `rudder` role in PostgresSQL having superuser permissions by default. Version 1.3.0-rc.1 contains patches for this issue.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

책임이 있는

GitHub, Inc.

예약하다

2023. 04. 13.

모더레이션

수락

항목

VDB-231759

EPSS

0.85825

출처

Want to know what is going to be exploited?

We predict KEV entries!