Security Advisory

CVE-2023-31847

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-17 00:00:00
Last updated 2025-01-22 17:04:58
Assigner mitre
State PUBLISHED

Description

In davinci 0.3.0-rc after logging in, the user can connect to the mysql malicious server by controlling the data source to read arbitrary files on the client side.