Vulnerabilities > CVE-2024-30269 - Unspecified vulnerability in Dataease

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

dataease

NVD

Published: 2024-04-08

Updated: 2025-02-12

Summary

DataEase, an open source data visualization and analysis tool, has a database configuration information exposure vulnerability prior to version 2.5.0. Visiting the `/de2api/engine/getEngine;.js` path via a browser reveals that the platform's database configuration is returned. The vulnerability has been fixed in v2.5.0. No known workarounds are available aside from upgrading.

Vulnerable Configurations

Part	Description	Count
Application	Dataease Dataease Dataease - Dataease Dataease 1.0.0 Dataease Dataease 1.0.1 Dataease Dataease 1.0.2 Dataease Dataease 1.1.0 Dataease Dataease 1.1.1 Dataease Dataease 1.2.0 Dataease Dataease 1.2.1 Dataease Dataease 1.2.2 Dataease Dataease 1.2.3 Dataease Dataease 1.3.0 Dataease Dataease 1.4.0 Dataease Dataease 1.4.1 Dataease Dataease 1.5.0 Dataease Dataease 1.5.1 Dataease Dataease 1.5.2 Dataease Dataease 1.6.0 Dataease Dataease 1.6.1 Dataease Dataease 1.6.2 Dataease Dataease 1.7.0 Dataease Dataease 1.8.0 Dataease Dataease 1.9.0 Dataease Dataease 1.9.1 Dataease Dataease 1.10.0 Dataease Dataease 1.11.0 Dataease Dataease 1.11.1 Dataease Dataease 1.11.2 Dataease Dataease 1.11.3 Dataease Dataease 1.12.0 Dataease Dataease 1.13.0 Dataease Dataease 1.13.1 Dataease Dataease 1.14.0 Dataease Dataease 1.15.0 Dataease Dataease 1.15.1 Dataease Dataease 1.15.2 Dataease Dataease 1.15.3 Dataease Dataease 1.15.4 Dataease Dataease 1.16.0 Dataease Dataease 1.16.1 Dataease Dataease 1.17.0 Dataease Dataease 1.17.1 Dataease Dataease 1.18.0 Dataease Dataease 1.18.1 Dataease Dataease 1.18.2 Dataease Dataease 1.18.3 Dataease Dataease 1.18.4 Dataease Dataease 1.18.5 Dataease Dataease 1.18.6 Dataease Dataease 1.18.7 Dataease Dataease 1.18.8 Dataease Dataease 1.18.9 Dataease Dataease 1.18.10 Dataease Dataease 1.18.11 Dataease Dataease 1.18.12 Dataease Dataease 1.18.13 Dataease Dataease 1.18.14 Dataease Dataease 1.18.15 Dataease Dataease 1.18.16 Dataease Dataease 1.18.17 Dataease Dataease 1.18.18 Dataease Dataease 1.18.19 Dataease Dataease 1.18.20 Dataease Dataease 1.18.21 Dataease Dataease 1.18.22 Dataease Dataease 1.18.23 Dataease Dataease 1.18.24 Dataease Dataease 1.18.25 Dataease Dataease 1.18.26 Dataease Dataease 1.18.27 Dataease Dataease 2.0.0 Dataease Dataease 2.1.0 Dataease Dataease 2.2.0 Dataease Dataease 2.3.0 Dataease Dataease 2.4.0 Dataease Dataease 2.4.1	81

Summary

Vulnerable Configurations

References