V
Scaner-VS
vulnerability catalog · v4.2
Home
Catalog
References
Reference catalogs
Sources
Upstream vulnerability databases
CWE
Common Weakness Enumeration
CAPEC
Attack pattern catalog
ATT&CK
Adversary tactics & techniques
Mitigations
ATT&CK Mitigations (M-codes)
Products
Affected products & software
Vendors
Vendors & manufacturers
Docs
EN
RU
Home
Catalog
Sources
CWE
CAPEC
ATT&CK
Mitigations
Products
Vendors
Docs
← Back to List
Mariadb
›
Application
nvd
Maxscale
Vulnerabilities
1
Known exploited
0
Max CVSS
6.5
Top EPSS
0.00268
Severity breakdown
Critical
0
High
0
Medium
1
Low
0
Affected version ranges
< 2.5.28
Also matched as (raw):
maxscale
Top vulnerabilities
CVE-2023-40354
An issue was discovered in MariaDB MaxScale before 23.02.3. A user enters an encrypted password on a "maxctrl create service" command line, but this password is then stored in cleartext in the resulting .cnf file under /var/lib/maxscale/maxscale.cnf.d. The fixed versions are 2.5.28, 6.4.9, 22.08.8, and 23.02.3.
View vendor →
Open in catalog with product filter →