We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
A script injection vulnerability was found in the Debezium database connector, where it does not properly sanitize some parameters. This flaw allows an attacker to send a malicious request to inject a parameter that may allow the viewing of unauthorized data.
Reserved 2023-03-15 | Published 2024-11-17 | Updated 2024-11-18 | Assigner redhatImproper Handling of Parameters
2023-02-13: | Reported to Red Hat. |
2024-06-04: | Made public. |
Red Hat would like to thank lufei for reporting this issue.
access.redhat.com/security/cve/CVE-2023-1419
bugzilla.redhat.com/show_bug.cgi?id=2178722 (RHBZ#2178722)
Support options