CVE-2020-35209

描述

An issue in Atomix v3.1.5 allows unauthorized Atomix nodes to join a target cluster via providing configuration information.

受影響套件(1)

• Maven/io.atomix:atomixfrom 0, <= 3.1.5

CVSS 分數

參考連結(3)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2020-35209
• PATCHhttps://github.com/atomix/atomix
• WEBhttps://docs.google.com/presentation/d/1W5KU7ffh4dheR8iD54ulABImi6byAhSI-OhEKw2adRo/edit?usp=sharing