VYPR

Go modules package

github.com/brokercap/bifrost

pkg:golang/github.com/brokercap/bifrost

Vulnerabilities (2)

  • CVE-2022-39267Oct 19, 2022
    affected < 1.8.7-releasefixed 1.8.7-release

    Bifrost is a heterogeneous middleware that synchronizes MySQL, MariaDB to Redis, MongoDB, ClickHouse, MySQL and other services for production environments. Versions prior to 1.8.8-release are subject to authentication bypass in the admin and monitor user groups by deleting the X-

  • CVE-2022-39219Sep 26, 2022
    affected < 1.8.7-releasefixed 1.8.7-release

    Bifrost is a middleware package which can synchronize MySQL/MariaDB binlog data to other types of databases. Versions 1.8.6-release and prior are vulnerable to authentication bypass when using HTTP basic authentication. This may allow group members who only have read permissions