CVE-2026-46481 - Vulnerability Details

- OpenMetadata: TEST_CONNECTION workflow leaks ingestion-bot JWT and database password to regular users

Description

OpenMetadata is a unified metadata platform. Prior to version 1.12.4, a non-admin SSO user can trigger a TEST_CONNECTION workflow for a Database Service and receive, in the HTTP 201 response of POST /api/v1/automations/workflows, both the cleartext database password in request.connection.config.password and the ingestion bot JWT in openMetadataServerConnection.securityConfig.jwtToken. The leaked ingestion-bot token can then be reused as Authorization: Bearer <jwt> to access sensitive service APIs with bot-level privileges. This issue has been patched in version 1.12.4.

Published: 2026-06-08

Score: 8.3 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

An API endpoint used for testing database connections returns sensitive data in its response. A non‑admin SSO user can invoke POST /api/v1/automations/workflows and receive the clear‑text database password in the request.connection.config.password field and the ingestion‑bot JWT in openMetadataServerConnection.securityConfig.jwtToken. With the leaked JWT the user can authenticate as the ingestion bot and call privileged APIs. The flaw is a clear‑text credential disclosure (CWE‑201).

Affected Systems

All installations of the OpenMetadata platform before version 1.12.4 run the vulnerable flow. The product is identified as open-metadata:OpenMetadata; users who have non‑admin SSO access are able to trigger the workflow and trigger the leakage.

Risk and Exploitability

The CVSS score of 8.3 indicates high severity. EPSS is not available, and the vulnerability is not listed in CISA KEV. Attackers can exploit the flaw through the normal API by simply having non‑admin SSO credentials; no additional privilege is required. The compromised JWT can be reused to access sensitive service APIs with bot‑level permissions, potentially allowing data exfiltration or further escalation.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

open-metadata

OpenMetadata

affected

Version	Status	Constraints
`< 1.12.4`	affected	—

No data.

Vendor Product Confidence Versions

Open-metadata

Openmetadata

100%

Version	Status	Scheme	Platform
`[0,1.12.4)`	affected	semver	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade OpenMetadata to version 1.12.4 or newer
Rotate any database passwords and the ingestion‑bot token that might have been exposed
Restrict regular users from triggering the test connection workflow or disable the endpoint until patched
Monitor for unusual API calls using JWTs tied to ingestion bots

Generated by OpenCVE AI on June 8, 2026 at 18:51 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Github GHSA	GHSA-9vmh-whc4-7phg	OpenMetadata: TEST_CONNECTION workflow leaks ingestion-bot JWT and database password to regular users

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00041.

Exploitation poc

Automatable no

Technical Impact total

References

Link	Providers
https://github.com/open-metadata/OpenMetadata/security/advisories/GHSA-9vmh-whc4-7phg

History

Mon, 08 Jun 2026 20:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Open-metadata Open-metadata openmetadata
Vendors & Products		Open-metadata Open-metadata openmetadata

Mon, 08 Jun 2026 19:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Mon, 08 Jun 2026 17:00:00 +0000

Type	Values Removed	Values Added
Description		OpenMetadata is a unified metadata platform. Prior to version 1.12.4, a non-admin SSO user can trigger a TEST_CONNECTION workflow for a Database Service and receive, in the HTTP 201 response of POST /api/v1/automations/workflows, both the cleartext database password in request.connection.config.password and the ingestion bot JWT in openMetadataServerConnection.securityConfig.jwtToken. The leaked ingestion-bot token can then be reused as Authorization: Bearer <jwt> to access sensitive service APIs with bot-level privileges. This issue has been patched in version 1.12.4.
Title		OpenMetadata: TEST_CONNECTION workflow leaks ingestion-bot JWT and database password to regular users
Weaknesses		CWE-201
References		https://github.com/open-metadata/OpenMetadata/security/advisories/GHSA-9vmh-whc4-7phg
Metrics		cvssV3_1 `{'score': 8.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L'}`

Subscriptions

Open-metadata Openmetadata

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2026-06-08T16:51:06.998Z

Updated: 2026-06-08T18:24:35.488Z

Reserved: 2026-05-14T18:06:06.810Z

Link: CVE-2026-46481

Vulnrichment

Updated: 2026-06-08T18:24:18.457Z

NVD

Status : Deferred

Published: 2026-06-08T17:16:51.847

Modified: 2026-06-09T15:25:56.860

Link: CVE-2026-46481

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-08T19:45:31Z

Weaknesses

CWE-201

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact Low

User Interaction None

Exploitation poc

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object