Security Advisory

CVE-2023-38699

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-08-04 17:53:30

Last updated 2024-10-03 18:11:45

Assigner GitHub_M

State PUBLISHED

Description

MindsDBs AI Virtual Database allows developers to connect any AI/ML model to any datasource. Prior to version 23.7.4.0, a call to requests with `verify=False` disables SSL certificate checks. This rule enforces always verifying SSL certificates for methods in the Requests library. In version 23.7.4.0, certificates are validated by default, which is the desired behavior.

← Browse all CVEs View on cve.org ↗