CloverDX before 5.17.3 writes passwords to the audit log in certain situations, if the audit log is enabled and single sign-on is not employed. The fixed versions are 5.15.4, 5.16.2, 5.17.3, and 6.0.x.
References
Link | Resource |
---|---|
https://support1.cloverdx.com/hc/en-us/articles/8484869595164-Security-advisory-April-2023 | Mitigation Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-04-24T00:00:00
Updated: 2023-04-24T00:00:00
Reserved: 2023-04-24T00:00:00
Link: CVE-2023-31056
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-04-24T03:15:07.267
Modified: 2023-04-29T03:06:14.197
Link: CVE-2023-31056
JSON object: View
Redhat Information
No data.
CWE