Browse all 11 CVE security advisories affecting YugabyteDB. AI-powered Chinese analysis, POCs, and references for each vulnerability.
YugabyteDB serves as a distributed SQL database designed for cloud-native applications requiring high availability and scalability. Historically, its vulnerabilities have commonly included remote code execution, cross-site scripting, and privilege escalation risks, with 11 CVEs currently documented. The platform implements security features like encryption at rest and in transit, along with role-based access controls. While no major security incidents have been widely reported, the CVE count indicates potential attack surfaces that require regular patching. Organizations should implement network segmentation and strict access controls to mitigate risks, as the distributed nature of the database introduces complex security considerations beyond traditional relational databases.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-4640 | Set Logging Level Without Authentication — AnywhereCWE-284 | 6.5 | Medium | 2023-08-30 |
This page lists every published CVE security advisory associated with YugabyteDB. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.