Sensitive Information Disclosure Vulnerability 

(CVE-2022-38112)

Download PDF

Summary

In DPA 2022.4 and older releases, generated heap memory dumps contain sensitive information in cleartext.

Affected Products

  • Database Performance Analyzer 2022.4

Fixed Software Release

Advisory Details

Severity

6.3 Medium

Advisory ID

First Published

01/18/2023

Fixed Version

CVSS Score

CVSS:3.1/ AV:A/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H