Out-of-bounds read was discovered in YDB server. An attacker could construct a query with insert statement that would allow him to read sensitive information from other memory locations or cause a crash.
References
Link | Resource |
---|---|
https://ydb.tech/ru/docs/security-changelog#28-11-2022 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: yandex
Published: 2022-12-23T00:00:00
Updated: 2022-12-23T00:00:00
Reserved: 2022-03-30T00:00:00
Link: CVE-2022-28228
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-12-23T22:15:08.647
Modified: 2023-01-04T18:59:47.537
Link: CVE-2022-28228
JSON object: View
Redhat Information
No data.
CWE