{"schema_version": "1.6.1", "id": "CVE-2022-22733", "summary": "Access-Token in ElasticJob UI causes password disclosure", "details": "Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache ShardingSphere ElasticJob-UI allows an attacker who has guest account to do privilege escalation. This issue affects Apache ShardingSphere ElasticJob-UI Apache ShardingSphere ElasticJob-UI 3.x version 3.0.0 and prior versions.", "affected": [{"ranges": [{"type": "SEMVER", "events": [{"introduced": "Apache ShardingSphere ElasticJob-UI 3.x"}, {"last_affected": "Apache ShardingSphere ElasticJob-UI 3.x"}]}]}], "references": [{"type": "ADVISORY", "url": "https://lists.apache.org/thread/qpdsm936n9bhksb0rzn6bq1h7ord2nm6"}]}