The password of database connections in AWS Glue is loaded into the website when a connection's edit page is requested. Principals with appropriate permissions can read the password. This behavior also increases the risk that database passwords will be intercepted by an attacker during transmission in the server response
Summary (give a brief description of the issue)
References (provide links to blogposts, etc.)
https://seclists.org/fulldisclosure/2024/Apr/22