skip to content
Decrypt LOL

Get Cyber-Smart in Just 5 Minutes a Week

Decrypt delivers quick and insightful updates on cybersecurity. No spam, no data sharing—just the info you need to stay secure.

Read the latest edition

Apache Issues Security Updates for MINA, HugeGraph, Traffic Control

/ 1 min read

🛡️✨ Apache Software Foundation issues urgent security updates for critical vulnerabilities. The Apache Software Foundation has released patches for severe vulnerabilities affecting its MINA, HugeGraph-Server, and Traffic Control products, with updates made available between December 23 and 25. Notably, a critical flaw in MINA, tracked as CVE-2024-52046, poses a risk of remote code execution due to unsafe Java deserialization, while HugeGraph-Server faces an authentication bypass issue (CVE-2024-43441). Additionally, Traffic Control has an SQL injection vulnerability (CVE-2024-45387) that allows arbitrary command execution. Users are urged to upgrade to the latest versions and implement additional security measures, especially during the holiday season when exploitation risks may increase due to reduced staffing.

Source
{entry.data.source.title}
Original