CVE-2024-28255 | open-metadata OpenMetadata up to 1.2.3 /api/v1 getUserPrincipal improper authentication
A vulnerability, which was classified as very critical, was found in open-metadata OpenMetadata up to 1.2.3. Affected is the function getUserPrincipal of the file /api/v1. The manipulation leads to improper authentication.
This vulnerability is traded…