CVE-2023-25557

Name of the Vulnerable Software and Affected Versions DataHub (affected versions not specified)

Description The DataHub frontend proxy does not properly construct URLs when forwarding data to the DataHub Metadata Store (GMS), allowing external users to reroute requests to arbitrary hosts. This enables attackers to redirect requests from the frontend proxy to other servers and return the results.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.