VYPR
Medium severity5.9GHSA Advisory· Published Nov 17, 2024· Updated Apr 15, 2026

CVE-2023-1419

CVE-2023-1419

Description

A script injection vulnerability was found in the Debezium database connector, where it does not properly sanitize some parameters. This flaw allows an attacker to send a malicious request to inject a parameter that may allow the viewing of unauthorized data.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
io.debezium:debezium-connector-mysqlMaven
< 2.3.0.Alpha12.3.0.Alpha1
io.debezium:debezium-connector-sqlserverMaven
< 2.3.0.Alpha12.3.0.Alpha1
io.debezium:debezium-coreMaven
< 2.3.0.Alpha12.3.0.Alpha1

Affected products

4

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.