Go modules package
github.com/brokercap/bifrost
pkg:golang/github.com/brokercap/bifrost
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-39267 | — | < 1.8.7-release | 1.8.7-release | Oct 19, 2022 | Bifrost is a heterogeneous middleware that synchronizes MySQL, MariaDB to Redis, MongoDB, ClickHouse, MySQL and other services for production environments. Versions prior to 1.8.8-release are subject to authentication bypass in the admin and monitor user groups by deleting the X- | ||
| CVE-2022-39219 | — | < 1.8.7-release | 1.8.7-release | Sep 26, 2022 | Bifrost is a middleware package which can synchronize MySQL/MariaDB binlog data to other types of databases. Versions 1.8.6-release and prior are vulnerable to authentication bypass when using HTTP basic authentication. This may allow group members who only have read permissions |
- CVE-2022-39267Oct 19, 2022affected < 1.8.7-releasefixed 1.8.7-release
Bifrost is a heterogeneous middleware that synchronizes MySQL, MariaDB to Redis, MongoDB, ClickHouse, MySQL and other services for production environments. Versions prior to 1.8.8-release are subject to authentication bypass in the admin and monitor user groups by deleting the X-
- CVE-2022-39219Sep 26, 2022affected < 1.8.7-releasefixed 1.8.7-release
Bifrost is a middleware package which can synchronize MySQL/MariaDB binlog data to other types of databases. Versions 1.8.6-release and prior are vulnerable to authentication bypass when using HTTP basic authentication. This may allow group members who only have read permissions