CVE-2023-38195 Information

Description

Datalust Seq before 2023.2.9489 allows insertion of sensitive information into an externally accessible file or directory. This is exploitable only when external (SQL Server or PostgreSQL) metadata storage is used. Exploitation can only occur from a high-privileged user account.

Reference

https://github.com/datalust/seq-tickets/issues/1886