CVE-2025-59060
published 2026-03-03CVE-2025-59060: Hostname verification bypass issue in Apache Ranger NiFiRegistryClient/NiFiClient is reported in Apache Ranger versions <= 2.7.0. Users are recommended to…
medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
Hostname verification bypass issue in Apache Ranger NiFiRegistryClient/NiFiClient is reported in Apache Ranger versions <= 2.7.0.
Users are recommended to upgrade to version 2.8.0, which fixes this issue.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | ranger | < 2.8.0 | 2.8.0 |
| apache_software_foundation | apache_ranger | <= 2.7.0 | — |