CVE-2023-0576

Name of the Vulnerable Software and Affected Versions Yugabyte DB version 2.17.0.0

Description The issue affects Yugabyte DB, allowing for Server-Side Request Forgery (SSRF), Improperly Controlled Modification of Dynamically-Determined Object Attributes, and Improper Restriction of Excessive Authentication Attempts. This can lead to accessing functionality not properly constrained by ACLs, communication channel manipulation, and authentication abuse.

Recommendations For Yugabyte DB version 2.17.0.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.