Refer to this board to find the latest security advisories for CloverDX Data Integration Platform.
For inquiries please contact us at firstname.lastname@example.org.
CloverDX Security Advisories
|Publication Name||Publication Date||Summary|
|Security Advisory April 2021||12-April-2021||
This advisory discloses two high severity security vulnerabilities in CloverDX Server. The first vulnerability (CVE-2021-29995) is an XSS vulnerability in CloverDX Server Simple HTTP API while the second one (CVE-2021-30133) is a CSRF vulnerability in CloverDX Server – see below for more details.
Both vulnerabilities affect the same versions of CloverDX Server and can be fixed by upgrading to newer CloverDX release as detailed below.