Vulnerabilities (CVE)

Filtered by vendor Apache Subscribe
Filtered by product Gobblin
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-36152 1 Apache 1 Gobblin 2024-11-21 7.5 HIGH 9.8 CRITICAL
Apache Gobblin trusts all certificates used for LDAP connections in Gobblin-as-a-Service. This affects versions <= 0.15.0. Users should update to version 0.16.0 which addresses this issue.
CVE-2021-36151 1 Apache 1 Gobblin 2024-11-21 2.1 LOW 5.5 MEDIUM
In Apache Gobblin, the Hadoop token is written to a temp file that is visible to all local users on Unix-like systems. This affects versions <= 0.15.0. Users should update to version 0.16.0 which addresses this issue.