Unrated severityNVD Advisory· Published Nov 7, 2023· Updated Sep 17, 2024
Prometheus Metrics Accessible Pre-Authentication
CVE-2023-6001
Description
Prometheus metrics are available without authentication. These expose detailed and sensitive information about the YugabyteDB Anywhere environment.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- YugabyteDB/YugabyteDB Anywherev5Range: 2.0.0.0
Patches
Vulnerability mechanics
References
1- www.yugabyte.commitre
News mentions
0No linked articles in our index yet.