CNNVD-202602-858 Information
Feb 05, 2026
cve
CNNVD ID
CNNVD-202602-858
Related CVE
- CNNVD Published: 2026-02-05
Description (Chinese)
YugabyteDB Anywhere是美国YugabyteDB公司的一个数据库。 YugabyteDB Anywhere存在安全漏洞,该漏洞源于Web界面以明文显示LDAP绑定密码,可能导致经过身份验证的用户获取凭据,造成未授权访问。
Description (English)
YugabyteDB Anywhere is a database of YugabyteDB in the United States. There is a security loophole in YugabyteDB Anywhere, which originates from the Web interface to clearly display LDAP binding passwords, which may lead to authentication users obtaining documents, resulting in unauthorized access.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
YugabyteDB
Published
2026-02-05
Last Modified
2026-02-24
References
https://docs.yugabyte.com/stable/secure/vulnerability-disclosure-policy/
Share on: