CVE-2023-50740

Source
https://cve.org/CVERecord?id=CVE-2023-50740
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-50740.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-50740
Aliases
Published
2024-03-06T13:44:53.867Z
Modified
2026-07-08T06:15:10.207909462Z
Severity
  • 5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator
Summary
Apache Linkis DataSource: DataSource module Oracle SQL Database Password Logged
Details

In Apache Linkis <=1.4.0, The password is printed to the log when using the Oracle data source of the Linkis data source module.  We recommend users upgrade the version of Linkis to version 1.5.0

Database specific
{
    "unresolved_ranges": [
        {
            "source": "AFFECTED_FIELD",
            "extracted_events": [
                {
                    "introduced": "*"
                },
                {
                    "fixed": "1.5.0"
                }
            ]
        }
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/50xxx/CVE-2023-50740.json",
    "cna_assigner": "apache",
    "cwe_ids": [
        "CWE-532"
    ]
}
References

Affected packages

Git / github.com/apache/linkis

Affected ranges

Type
GIT
Repo
https://github.com/apache/linkis
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Database specific
{
    "source": "CPE_RANGE",
    "cpe": "cpe:2.3:a:apache:linkis:*:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "1.5.0"
        }
    ]
}

Affected versions

0.*
0.10.0
0.11.0
0.6.0
0.7.0
0.8.0
0.9.1
0.9.2
0.9.3
0.9.4
1.*
1.0.0
1.0.0-RC1
1.0.1
1.0.2

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-50740.json"