An issue was discovered in Tigergraph Enterprise 3.7.0. A single TigerGraph instance can host multiple graphs that are accessed by multiple different users. The TigerGraph platform does not protect the confidentiality of any data uploaded to the remote server. In this scenario, any user that has permissions to upload data can browse data uploaded by any other user (irrespective of their permissions).
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://neo4j.com/security/cve-2023-28482/ |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-08-14T00:00:00
Updated: 2024-08-02T12:38:25.351Z
Reserved: 2023-03-16T00:00:00
Link: CVE-2023-28482
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-08-14T19:15:10.513
Modified: 2023-08-21T17:21:28.503
Link: CVE-2023-28482
Redhat
No data.