Vulnerabilities (CVE)

Filtered by vendor Greenplum Subscribe
Filtered by product Greenplum
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-22030 1 Greenplum 1 Greenplum 2024-11-21 4.0 MEDIUM 6.5 MEDIUM
In versions of Greenplum database prior to 5.28.14 and 6.17.0, certain statements execution led to the storage of sensitive(credential) information in the logs of the database. A malicious user with access to logs can read sensitive(credentials) information about users
CVE-2021-22028 1 Greenplum 1 Greenplum 2024-11-21 6.4 MEDIUM 9.1 CRITICAL
In versions of Greenplum database prior to 5.28.6 and 6.14.0, greenplum database contains a file path traversal vulnerability leading to information disclosure from the file system. A malicious user can read/write information from the file system using this vulnerability.