VYPR
Medium severity5.9NVD Advisory· Published Aug 4, 2023· Updated Jun 17, 2026

CVE-2023-38494

CVE-2023-38494

Description

MeterSphere is an open-source continuous testing platform. Prior to version 2.10.4 LTS, some interfaces of the Cloud version of MeterSphere do not have configuration permissions, and are sensitively leaked by attackers. Version 2.10.4 LTS contains a patch for this issue.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • MeterSphere/MeterSpherellm-fuzzy2 versions
    <2.10.4 LTS+ 1 more
    • (no CPE)range: <2.10.4 LTS
    • (no CPE)range: < 2.10.4-LTS

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.