https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Fri, 05 Jun 2026 20:12:15 +0000 https://vulnerability.circl.lu/sighting/3475de8f-a6dc-455f-b89b-c9d7241a8f36/export {"uuid": "3475de8f-a6dc-455f-b89b-c9d7241a8f36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31011", "type": "seen", "source": "https://t.me/cibsecurity/43583", "content": "\u203c CVE-2022-31011 \u203c\n\nTiDB is an open-source NewSQL database that supports Hybrid Transactional and Analytical Processing (HTAP) workloads. Under certain conditions, an attacker can construct malicious authentication requests to bypass the authentication process, resulting in privilege escalation or unauthorized access. Only users using TiDB 5.3.0 are affected by this vulnerability. TiDB version 5.3.1 contains a patch for this issue. Other mitigation strategies include turning off Security Enhanced Mode (SEM), disabling local login for non-root accounts, and ensuring that the same IP cannot be logged in as root and normal user at the same time.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-01T00:19:01.000000Z"} {"uuid": "3475de8f-a6dc-455f-b89b-c9d7241a8f36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31011", "type": "seen", "source": "https://t.me/cibsecurity/43583", "content": "\u203c CVE-2022-31011 \u203c\n\nTiDB is an open-source NewSQL database that supports Hybrid Transactional and Analytical Processing (HTAP) workloads. Under certain conditions, an attacker can construct malicious authentication requests to bypass the authentication process, resulting in privilege escalation or unauthorized access. Only users using TiDB 5.3.0 are affected by this vulnerability. TiDB version 5.3.1 contains a patch for this issue. Other mitigation strategies include turning off Security Enhanced Mode (SEM), disabling local login for non-root accounts, and ensuring that the same IP cannot be logged in as root and normal user at the same time.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-01T00:19:01.000000Z"} https://vulnerability.circl.lu/sighting/3475de8f-a6dc-455f-b89b-c9d7241a8f36/export Wed, 01 Jun 2022 00:19:01 +0000