CVE-2025-8862

Vulnerability Description

YugabyteDB has been collecting diagnostics information from YugabyteDB servers, which may include sensitive gflag configurations. To mitigate this, we recommend upgrading the database to a version where this information is properly redacted.

Related Weaknesses (CWE)

CWE-201

References

https://docs.yugabyte.com/preview/secure/vulnerability-disclosure-policy/

FAQ

What is CVE-2025-8862?

CVE-2025-8862 is a documented vulnerability. YugabyteDB has been collecting diagnostics information from YugabyteDB servers, which may include sensitive gflag configurations. To mitigate this, we recommend upgrading the database to a version whe...

How severe is CVE-2025-8862?

CVSS scoring is not yet available for CVE-2025-8862. Check NVD for updates.

Is there a patch for CVE-2025-8862?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.