Vendor

Debezium

Products

CVEs

Across products

Status

Private

Products

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2024-28736	Debezium Debezium	Hig	0.46	7.1	0.01		May 31, 2024	An issue in Debezium Community debezium-ui v.2.5 allows a local attacker to execute arbitrary code via the refresh page function.
CVE-2023-1419	Debezium Debezium	Med	0.31	5.9	0.00		Nov 17, 2024	A script injection vulnerability was found in the Debezium database connector, where it does not properly sanitize some parameters. This flaw allows an attacker to send a malicious request to inject a parameter that may allow the viewing of unauthorized data.

CVE-2024-28736HigMay 31, 2024
Debezium
Debezium
risk 0.46cvss 7.1epss 0.01
An issue in Debezium Community debezium-ui v.2.5 allows a local attacker to execute arbitrary code via the refresh page function.
CVE-2023-1419MedNov 17, 2024
Debezium
Debezium
risk 0.31cvss 5.9epss 0.00
A script injection vulnerability was found in the Debezium database connector, where it does not properly sanitize some parameters. This flaw allows an attacker to send a malicious request to inject a parameter that may allow the viewing of unauthorized data.