Unrated severityNVD Advisory· Published Jan 20, 2022· Updated Aug 3, 2024
Access-Token in ElasticJob UI causes password disclosure
CVE-2022-22733
Description
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache ShardingSphere ElasticJob-UI allows an attacker who has guest account to do privilege escalation. This issue affects Apache ShardingSphere ElasticJob-UI Apache ShardingSphere ElasticJob-UI 3.x version 3.0.0 and prior versions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=3.0.0+ 1 more
- (no CPE)range: <=3.0.0
- (no CPE)range: Apache ShardingSphere ElasticJob-UI 3.x
Patches
Vulnerability mechanics
References
2- www.openwall.com/lists/oss-security/2022/01/20/2mitremailing-listx_refsource_MLIST
- lists.apache.org/thread/qpdsm936n9bhksb0rzn6bq1h7ord2nm6mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.