CVE-2023-1419

CVSS 3.1 Score 5.9 of 10 (medium)

Details

Published Nov 17, 2024

Updated: Nov 18, 2024

CWE ID 233

Summary

CVE-2023-1419 is a script injection vulnerability affecting the Debezium database connector. The issue arises due to insufficient sanitization of certain parameters. An attacker can exploit this flaw by sending a malicious request containing injected parameters, potentially granting unauthorized access to sensitive data. This vulnerability poses a significant risk to systems using the Debezium database connector and requires immediate attention and patching.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/wSjZNn
https://www.cve.org/CVERecord?id=CVE-2023-1419
https://nvd.nist.gov/vuln/detail/CVE-2023-1419

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners

CVE-2023-1419

CVSS 3.1 Score 5.9 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations