0.7.1-patch1
3 years ago
1 months ago
Known vulnerabilities in the com.clickhouse:clickhouse-http-client package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
Affected versions of this package are vulnerable to Improper Certificate Validation which enables an attacker with access to client exception error messages or logs to obtain client certificate passwords, potentially allowing unauthorized access to sensitive information, data manipulation, and denial of service attacks. How to fix Improper Certificate Validation? Upgrade | [,0.4.6) |