VYPR

Storm Prometheus Reporter

by Apache

CVEs (1)

  • CVE-2026-40557MedApr 27, 2026
    risk 0.31cvss 4.8epss 0.00

    Improper Certificate Validation via Global SSL Context Downgrade in Apache Storm Prometheus Reporter Versions Affected: from 2.6.3 to 2.8.6 Description:  In production deployments where an administrator enables storm.daemon.metrics.reporter.plugin.prometheus.skip_tls_valida…