5.3
CVE-2025-59060
- EPSS 0.33%
- Veröffentlicht 03.03.2026 10:46:52
- Zuletzt bearbeitet 05.03.2026 14:13:40
- Quelle security@apache.org
- CVE-Watchlists
- Unerledigt
Apache Ranger: Hostname verification bypass in NiFiRegistryClient and NifiClient
Hostname verification bypass issue in Apache Ranger NiFiRegistryClient/NiFiClient is reported in Apache Ranger versions <= 2.7.0. Users are recommended to upgrade to version 2.8.0, which fixes this issue.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.33% | 0.245 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 5.3 | 3.9 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
|
CWE-297 Improper Validation of Certificate with Host Mismatch
The product communicates with a host that provides a certificate, but the product does not properly ensure that the certificate is actually associated with that host.
https://lists.apache.org/thread/c4plx81z3xs86vgl3fd95y3q7hhtff05
http://www.openwall.com/lists/oss-security/2026/03/02/4