CVE-2021-45457
Overly broad CORS configuration
In Apache Kylin, Cross-origin requests with credentials are allowed to be sent from any origin. This issue affects Apache Kylin 2 version 2.6.6 and prior versions; Apache Kylin 3 version 3.1.2 and prior versions; Apache Kylin 4 version 4.0.0 and prior versions.
Productos afectados
Apache Software Foundation · Apache Kylin¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →