admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-05-28 17:20:48 +00:00
Code Issues Packages Projects Releases Wiki Activity
GobyVuls/CVE-2023-38646.md
Goby 8c78e6dbfb
Create CVE-2023-38646.md 
add CVE-2023-38646
2023-07-28 14:23:14 +08:00

1.7 KiB
Raw Blame History

Metabase JDBC Remote Code Execution Vulnerability (CVE-2023-38646)

Vulnerability Metabase JDBC Remote Code Execution Vulnerability (CVE-2023-38646)
Chinese name Metabase JDBC 远程代码执行漏洞CVE-2023-38646
CVSS core 9.8
FOFA Query (click to view the results directly) title=="Metabase" || ((body="<script type="application/json" id="_metabaseBootstrap">" || body="window.MetabaseLocalization = JSON.parse(document.getElementById("_metabaseLocalization").textContent);") && body="window.MetabaseRoot = actualRoot;")
Number of assets affected 66604
Description Metabase is an open source data analysis and visualization tool that helps users easily connect to various data sources, including databases, cloud services, and APIs, and then use an intuitive interface for data query, analysis, and visualization.A remote code execution vulnerability exists in Metabase that could allow an attacker to execute arbitrary code on a server running with Metabase server privileges.
Impact A remote code execution vulnerability exists in Metabase that could allow an attacker to execute arbitrary code on a server running with Metabase server privileges.