EPSS
Percentile
49.3%
apollo-core does not provide secure access controls to the APIs. When exposed to the Internet, the lack of access controls allow any remote user to access and edit the application’s configuration.
github.com/advisories/GHSA-xpmx-h7xq-xffh
github.com/ctripcorp/apollo/pull/3233/commits/ae9ba6cfd32ed80469f162e5e3583e2477862ddf
github.com/ctripcorp/apollo/security/advisories/GHSA-xpmx-h7xq-xffh