Skip to main content

Goldengate Big Data And Application Adapters

1 CVEs product

Monthly

CVE-2021-26291 Maven CRITICAL POC PATCH Act Now

Apache Maven will follow repositories that are defined in a dependency’s Project Object Model (pom) which may be surprising to some users, resulting in potential risk if a malicious actor takes over. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Apache Information Disclosure Maven Quarkus Financial Services Analytical Applications Infrastructure +1
NVD
CVSS 3.1
9.1
EPSS
8.7%
EPSS 9% CVSS 9.1
CRITICAL POC PATCH Act Now

Apache Maven will follow repositories that are defined in a dependency’s Project Object Model (pom) which may be surprising to some users, resulting in potential risk if a malicious actor takes over. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Apache Information Disclosure Maven +3
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy