Inadequate encryption strength (AES ECB) in mycli 1.27.0 allows attackers to view sensitive information via /mycli/config.py References: - https://github.com/dbcli/mycli/issues/1131 - https://nvd.nist.gov/vuln/detail/CVE-2023-44690
Created mycli tracking bugs for this issue: Affects: epel-all [bug 2245354] Affects: fedora-all [bug 2245353]