PT-2026-53375 · Pypi · Apache-Airflow-Providers-Mongo
Publicado
2026-06-29
·
Atualizado
2026-06-29
CVSS v3.1
9.1
Crítica
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N |
When ssl was enabled for Mongo Hook, default settings included "allow insecure" which caused that certificates were not validated. This was unexpected and undocumented.
Users are recommended to upgrade to version 4.0.0, which fixes this issue.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Apache-Airflow-Providers-Mongo