Apache

Apache-airflow-providers-mongo

1 vulnerability found

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.1

CVE-2024-25141

  • EPSS 0.07%
  • Published 20.02.2024 21:15:08
  • Last modified 28.04.2025 18:21:07

When ssl was enabled for Mongo Hook, default settings included "allow_insecure" which caused that certificates were not validated. This was unexpected and undocumented. Users are recommended to upgrade to version 4.0.0, which fixes this issue.