Security Advisory

CVE-2023-28877

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-03-31 00:00:00

Last updated 2025-02-14 19:31:54

Assigner mitre

State PUBLISHED

Description

The VTEX apps-graphql@2.x GraphQL API module does not properly restrict unauthorized access to private configuration data. (apps-graphql@3.x is unaffected by this issue.)

← Browse all CVEs View on cve.org ↗