3 matches found
CVE-2020-35211
An issue in Atomix v3.1.5 allows unauthorized Atomix nodes to become the lead node in a target cluster via manipulation of the variable terms in RaftContext...
com.github.lburgazzoli:atomix-boot (>=1.0.1 <=1.0.2), com.github.lburgazzoli:atomix-boot-examples (>=1.0.1 <=1.0.2) +123 more potentially affected by CVE-2020-35211 via io.atomix:atomix (>=0.1.0-beta1 <=3.1.5)
io.atomix:atomix MAVEN version =0.1.0-beta1, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =3.0.0, =1.2.3-1, =0.0.2, =0.0.2, =0.0.21, =0.0.31, =0.2.12, =0.3.5 and more Source cves: CVE-2020-35211 Source advisory: OSV:GHSA-4JHC-WJR3-PWH2...
CVE-2020-35211
CVE-2020-35211 describes a vulnerability in Atomix v3.1.5 where unauthorized Atomix nodes can become the lead node in a target cluster by manipulating variables in RaftContext. The issue affects the Raft leadership mechanism and can impact cluster leadership integrity. Exploit details, affected p...