2017-04-07 19:00:00
mitre
PUBLISHED
Apache Ignite before 1.9 allows man-in-the-middle attackers to read arbitrary files via XXE in modified update-notifier documents.