Apache Ignite 1.0.0-RC3 to 2.0 uses an update notifier component to update the users about new project releases that include additional functionality, bug fixes and performance improvements. To do that the component communicates to an external PHP server (http://ignite.run) where it needs to send some system properties like Apache Ignite or Java version. Some of the properties might contain user sensitive information.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: apache
Published: 2017-06-28T13:00:00
Updated: 2024-08-05T16:12:28.262Z
Reserved: 2017-04-11T00:00:00
Link: CVE-2017-7686
Vulnrichment
No data.
NVD
Status : Modified
Published: 2017-06-28T13:29:00.217
Modified: 2024-11-21T03:32:27.780
Link: CVE-2017-7686
Redhat
No data.