Moderate severity vulnerability was found in maven org.apache.ozone:ozone-main (maven) .

In Apache Ozone before 1.2.0, Recon HTTP endpoints provide access to OM, SCM and Datanode metadata. Due to a bug, any unauthenticated user can access the data from these endpoints.

References


Courtesy:https://github.com/advisories/GHSA-gc37-9g7f-96fx

By admin

Leave a Reply

Your email address will not be published. Required fields are marked *